Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cve-2018-17189
Vulnerability from cvelistv5
Published
2019-01-30 22:00
Modified
2024-09-17 01:21
Severity ?
EPSS score ?
Summary
In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Apache Software Foundation | Apache HTTP Server |
Version: 2.4.17 to 2.4.37 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T10:39:59.646Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, { name: "106685", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/106685", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://security.netapp.com/advisory/ntap-20190125-0001/", }, { name: "FEDORA-2019-0300c36537", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U7N3DUEBFVGQWQEME5HTPTTKDHGHBAC6/", }, { name: "FEDORA-2019-133a8a7cb5", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IY7SJQOO3PYFVINZW6H5EK4EZ3HSGZNM/", }, { name: "GLSA-201903-21", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201903-21", }, { name: "20190403 [SECURITY] [DSA 4422-1] apache2 security update", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "https://seclists.org/bugtraq/2019/Apr/5", }, { name: "USN-3937-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "https://usn.ubuntu.com/3937-1/", }, { name: "DSA-4422", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "https://www.debian.org/security/2019/dsa-4422", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", }, { name: "[httpd-cvs] 20190815 svn commit: r1048743 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20190815 svn commit: r1048742 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03950en_us", }, { name: "RHSA-2019:3933", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { name: "RHSA-2019:3935", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { name: "RHSA-2019:3932", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { name: "RHSA-2019:4126", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://www.tenable.com/security/tns-2019-09", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://www.oracle.com/security-alerts/cpujan2020.html", }, { name: "[httpd-cvs] 20200401 svn commit: r1058586 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20200401 svn commit: r1058587 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073143 [3/3] - in /websites/staging/httpd/trunk/content: ./ security/", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073140 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073139 [11/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/r15f9aa4427581a1aecb4063f1b4b983511ae1c9935e2a0a6876dad3c%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1888194 [12/13] - /httpd/site/trunk/content/security/json/", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073149 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210606 svn commit: r1075470 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Apache HTTP Server", vendor: "Apache Software Foundation", versions: [ { status: "affected", version: "2.4.17 to 2.4.37", }, ], }, ], datePublic: "2019-01-22T00:00:00", descriptions: [ { lang: "en", value: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", }, ], problemTypes: [ { descriptions: [ { description: "mod_http2, DoS via slow request bodies", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2021-06-06T10:10:55", orgId: "f0158376-9dc2-43b6-827c-5f631a4d8d09", shortName: "apache", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, { name: "106685", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/106685", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://security.netapp.com/advisory/ntap-20190125-0001/", }, { name: "FEDORA-2019-0300c36537", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U7N3DUEBFVGQWQEME5HTPTTKDHGHBAC6/", }, { name: "FEDORA-2019-133a8a7cb5", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IY7SJQOO3PYFVINZW6H5EK4EZ3HSGZNM/", }, { name: "GLSA-201903-21", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201903-21", }, { name: "20190403 [SECURITY] [DSA 4422-1] apache2 security update", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "https://seclists.org/bugtraq/2019/Apr/5", }, { name: "USN-3937-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "https://usn.ubuntu.com/3937-1/", }, { name: "DSA-4422", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "https://www.debian.org/security/2019/dsa-4422", }, { tags: [ "x_refsource_MISC", ], url: "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", }, { tags: [ "x_refsource_MISC", ], url: "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", }, { name: "[httpd-cvs] 20190815 svn commit: r1048743 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20190815 svn commit: r1048742 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03950en_us", }, { name: "RHSA-2019:3933", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { name: "RHSA-2019:3935", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { name: "RHSA-2019:3932", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { name: "RHSA-2019:4126", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://www.tenable.com/security/tns-2019-09", }, { tags: [ "x_refsource_MISC", ], url: "https://www.oracle.com/security-alerts/cpujan2020.html", }, { name: "[httpd-cvs] 20200401 svn commit: r1058586 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20200401 svn commit: r1058587 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073143 [3/3] - in /websites/staging/httpd/trunk/content: ./ security/", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073140 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073139 [11/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/r15f9aa4427581a1aecb4063f1b4b983511ae1c9935e2a0a6876dad3c%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1888194 [12/13] - /httpd/site/trunk/content/security/json/", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073149 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9%40%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210606 svn commit: r1075470 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "security@apache.org", DATE_PUBLIC: "2019-01-22T00:00:00", ID: "CVE-2018-17189", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Apache HTTP Server", version: { version_data: [ { version_value: "2.4.17 to 2.4.37", }, ], }, }, ], }, vendor_name: "Apache Software Foundation", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "mod_http2, DoS via slow request bodies", }, ], }, ], }, references: { reference_data: [ { name: "https://httpd.apache.org/security/vulnerabilities_24.html", refsource: "CONFIRM", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, { name: "106685", refsource: "BID", url: "http://www.securityfocus.com/bid/106685", }, { name: "https://security.netapp.com/advisory/ntap-20190125-0001/", refsource: "CONFIRM", url: "https://security.netapp.com/advisory/ntap-20190125-0001/", }, { name: "FEDORA-2019-0300c36537", refsource: "FEDORA", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U7N3DUEBFVGQWQEME5HTPTTKDHGHBAC6/", }, { name: "FEDORA-2019-133a8a7cb5", refsource: "FEDORA", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IY7SJQOO3PYFVINZW6H5EK4EZ3HSGZNM/", }, { name: "GLSA-201903-21", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201903-21", }, { name: "20190403 [SECURITY] [DSA 4422-1] apache2 security update", refsource: "BUGTRAQ", url: "https://seclists.org/bugtraq/2019/Apr/5", }, { name: "USN-3937-1", refsource: "UBUNTU", url: "https://usn.ubuntu.com/3937-1/", }, { name: "DSA-4422", refsource: "DEBIAN", url: "https://www.debian.org/security/2019/dsa-4422", }, { name: "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", refsource: "MISC", url: "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", }, { name: "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", refsource: "MISC", url: "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", }, { name: "[httpd-cvs] 20190815 svn commit: r1048743 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", url: "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20190815 svn commit: r1048742 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", url: "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830@%3Ccvs.httpd.apache.org%3E", }, { name: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03950en_us", refsource: "CONFIRM", url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03950en_us", }, { name: "RHSA-2019:3933", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { name: "RHSA-2019:3935", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { name: "RHSA-2019:3932", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { name: "RHSA-2019:4126", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { name: "https://www.tenable.com/security/tns-2019-09", refsource: "CONFIRM", url: "https://www.tenable.com/security/tns-2019-09", }, { name: "https://www.oracle.com/security-alerts/cpujan2020.html", refsource: "MISC", url: "https://www.oracle.com/security-alerts/cpujan2020.html", }, { name: "[httpd-cvs] 20200401 svn commit: r1058586 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", url: "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20200401 svn commit: r1058587 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", url: "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", refsource: "MLIST", url: "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073143 [3/3] - in /websites/staging/httpd/trunk/content: ./ security/", refsource: "MLIST", url: "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073140 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", url: "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073139 [11/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", refsource: "MLIST", url: "https://lists.apache.org/thread.html/r15f9aa4427581a1aecb4063f1b4b983511ae1c9935e2a0a6876dad3c@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1888194 [12/13] - /httpd/site/trunk/content/security/json/", refsource: "MLIST", url: "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", refsource: "MLIST", url: "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073149 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", refsource: "MLIST", url: "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210606 svn commit: r1075470 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", url: "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d@%3Ccvs.httpd.apache.org%3E", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "f0158376-9dc2-43b6-827c-5f631a4d8d09", assignerShortName: "apache", cveId: "CVE-2018-17189", datePublished: "2019-01-30T22:00:00Z", dateReserved: "2018-09-19T00:00:00", dateUpdated: "2024-09-17T01:21:57.609Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { nvd: "{\"cve\":{\"id\":\"CVE-2018-17189\",\"sourceIdentifier\":\"security@apache.org\",\"published\":\"2019-01-30T22:29:00.357\",\"lastModified\":\"2024-11-21T03:54:03.157\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.\"},{\"lang\":\"es\",\"value\":\"En Apache HTTP Server, en sus versiones 2.4.37 y anteriores, mediante el envío de cuerpos de respuesta mediante la técnica del \\\"slow loris\\\" a recursos planos, la transmisión h2 para esa petición ocupó de forma innecesaria un hilo de servidor que limpiaba tales datos entrantes. Esto afecta solo a las conexiones HTTP/2 (mod_http2).\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":3.9,\"impactScore\":1.4}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E1F45B27-504B-4202-87B8-BD3B094003F1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F2FB2B98-DFD2-420A-8A7F-9B288651242F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B803D25B-0A19-4569-BA05-09D58F33917C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8510442C-212F-4013-85FA-E0AB59F6F2C6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.25:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB5673AB-53BB-40B2-83A7-8B82B2D0EBB8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.26:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FBB3ED63-45CA-44AB-973C-9AD2569AD800\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF30AD98-9CBA-456E-A827-79FCEDEB30A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C117BF2F-1E5B-4AEC-8770-3153E5B4CD07\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"437BC6D8-D103-452C-9C86-D89FC977A50F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B652B1D0-CCDA-46C6-BCFE-A1478CD0A0DC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"344A54D6-1120-4EFB-990D-2837562889A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BA36996-04B2-4DFB-86BC-4E655347E06C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD011C87-5F0C-48AE-88A7-B3A9BD8144EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:2.4.37:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE5F8320-A680-4E2F-B32F-F7DBEED09ED6\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:santricity_cloud_connector:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB15BCF1-1B1D-49D8-9B76-46DCB10044DB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:storage_automation_store:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B7A6697-98CC-4E36-93DB-B7160F8399F9\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC1BD7B7-6D88-42B8-878E-F1318CA5FCAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D100F7CE-FC64-4CC6-852A-6136D72DA419\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB654DFA-FEF9-4D00-ADB0-F3F2B6ACF13E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:hospitality_guest_access:4.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A3DC116-2844-47A1-BEC2-D0675DD97148\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:hospitality_guest_access:4.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E0F1DF3E-0F2D-4EFC-9A3E-F72149C8AE94\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"82EA4BA7-C38B-4AF3-8914-9E3D089EBDD4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B9C9BC66-FA5F-4774-9BDA-7AB88E2839C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F69B9A5-F21B-4904-9F27-95C0F7A628E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_xstore_point_of_service:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F87FC90-16D0-4051-8280-B0DD4441F10B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_xstore_point_of_service:7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0ED83E3-E6BF-4EAA-AF8F-33485A88A218\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:sun_zfs_storage_appliance_kit:8.8.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"517A2282-C254-49EB-A52D-FC2B45E70ADD\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"815D70A8-47D3-459C-A32C-9FEACA0659D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"7A5301BF-1402-4BE0-A0F8-69FBE79BC6D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07C312A0-CD2C-4B9C-B064-6409B25C278F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:jboss_core_services:1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2466282-51AB-478D-9FF4-FA524265ED2E\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"142AD0DD-4CF3-4D74-9442-459CE3347E3A\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/106685\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3932\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3933\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3935\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4126\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://httpd.apache.org/security/vulnerabilities_24.html\",\"source\":\"security@apache.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r15f9aa4427581a1aecb4063f1b4b983511ae1c9935e2a0a6876dad3c%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IY7SJQOO3PYFVINZW6H5EK4EZ3HSGZNM/\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U7N3DUEBFVGQWQEME5HTPTTKDHGHBAC6/\",\"source\":\"security@apache.org\"},{\"url\":\"https://seclists.org/bugtraq/2019/Apr/5\",\"source\":\"security@apache.org\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201903-21\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20190125-0001/\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03950en_us\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3937-1/\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2019/dsa-4422\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujan2020.html\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2019-09\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/106685\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3932\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3933\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3935\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4126\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://httpd.apache.org/security/vulnerabilities_24.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r15f9aa4427581a1aecb4063f1b4b983511ae1c9935e2a0a6876dad3c%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IY7SJQOO3PYFVINZW6H5EK4EZ3HSGZNM/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U7N3DUEBFVGQWQEME5HTPTTKDHGHBAC6/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://seclists.org/bugtraq/2019/Apr/5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201903-21\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20190125-0001/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03950en_us\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3937-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2019/dsa-4422\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujan2020.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2019-09\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}", }, }
rhsa-2019_3933
Vulnerability from csaf_redhat
Published
2019-11-20 16:14
Modified
2025-01-05 19:06
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release on RHEL 7
Notes
Topic
An update is now available for JBoss Core Services on RHEL 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737)
* openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734)
* mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)
* openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407)
* mod_session_cookie does not respect expiry time (CVE-2018-17199)
* mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)
* mod_http2: possible crash on late upgrade (CVE-2019-0197)
* mod_http2: read-after-free on a string compare (CVE-2019-0196)
* nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511)
* nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513)
* mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516)
* mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for JBoss Core Services on RHEL 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737)\n* openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734)\n* mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)\n* openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407)\n* mod_session_cookie does not respect expiry time (CVE-2018-17199)\n* mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)\n* mod_http2: possible crash on late upgrade (CVE-2019-0197)\n* mod_http2: read-after-free on a string compare (CVE-2019-0196)\n* nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511)\n* nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513)\n* mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516)\n* mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2019:3933", url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "JBCS-798", url: "https://issues.redhat.com/browse/JBCS-798", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3933.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release on RHEL 7", tracking: { current_release_date: "2025-01-05T19:06:10+00:00", generator: { date: "2025-01-05T19:06:10+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.5", }, }, id: "RHSA-2019:3933", initial_release_date: "2019-11-20T16:14:21+00:00", revision_history: [ { date: "2019-11-20T16:14:21+00:00", number: "1", summary: "Initial version", }, { date: "2020-01-06T13:04:40+00:00", number: "2", summary: "Last updated version", }, { date: "2025-01-05T19:06:10+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Core Services on RHEL 7 Server", product: { name: "Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_core_services:1::el7", }, }, }, ], category: "product_family", name: "Red Hat JBoss Core Services", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", product_id: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", product_id: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-devel@2.11-20.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", product_id: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-debuginfo@2.11-20.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-63.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-63.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", product_id: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", product_id: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-devel@1.0.6-7.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", product_id: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-debuginfo@1.0.6-7.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", product_id: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", product_id: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.39.2-4.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", product_id: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.39.2-4.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", product_id: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", product_id: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl@7.64.1-14.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", product_id: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl-devel@7.64.1-14.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", product_id: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl-debuginfo@7.64.1-14.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_md@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.37-33.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.37-33.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.46-22.redhat_1.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.46-22.redhat_1.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.46-22.redhat_1.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.12-9.Final_redhat_2.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.2-16.GA.jbcs.el7?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", product: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", product_id: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", product: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", product_id: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", product: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", product_id: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el7?arch=src&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", product: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", product_id: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", product: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", product_id: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", product: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", product_id: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", product: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", product_id: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", product: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", product_id: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", product: { name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", product_id: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.46-22.redhat_1.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", product: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", product_id: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", product: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", product_id: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el7?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", product: { name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", product_id: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-manual@2.4.37-33.jbcs.el7?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", }, product_reference: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", }, product_reference: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", }, product_reference: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", }, product_reference: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", }, product_reference: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", }, product_reference: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", }, product_reference: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", }, product_reference: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", }, product_reference: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", }, product_reference: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", }, product_reference: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", }, product_reference: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, ], }, vulnerabilities: [ { cve: "CVE-2018-0734", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-10-30T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1644364", }, ], notes: [ { category: "description", text: "The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).", title: "Vulnerability description", }, { category: "summary", text: "openssl: timing side channel attack in the DSA signature algorithm", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0734", }, { category: "external", summary: "RHBZ#1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0734", url: "https://www.cve.org/CVERecord?id=CVE-2018-0734", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", }, ], release_date: "2018-10-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: timing side channel attack in the DSA signature algorithm", }, { cve: "CVE-2018-0737", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-04-17T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1568253", }, ], notes: [ { category: "description", text: "OpenSSL RSA key generation was found to be vulnerable to cache side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover parts of the private key.", title: "Vulnerability description", }, { category: "summary", text: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0737", }, { category: "external", summary: "RHBZ#1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0737", url: "https://www.cve.org/CVERecord?id=CVE-2018-0737", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", }, { category: "external", summary: "http://www.openwall.com/lists/oss-security/2018/04/16/3", url: "http://www.openwall.com/lists/oss-security/2018/04/16/3", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20180416.txt", url: "https://www.openssl.org/news/secadv/20180416.txt", }, ], release_date: "2018-04-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 3.3, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", }, { acknowledgments: [ { names: [ "Alejandro Cabrera Aldaya", ], organization: "Universidad Tecnologica de la Habana CUJAE; Cuba", }, { names: [ "Billy Bob Brumley", "Cesar Pereida Garcia", "Sohaib ul Hassan", ], }, { names: [ "Nicola Tuveri", ], organization: "Tampere University of Technology; Finland", }, ], cve: "CVE-2018-5407", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2018-11-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1645695", }, ], notes: [ { category: "description", text: "A microprocessor side-channel vulnerability was found on SMT (e.g, Hyper-Threading) architectures. An attacker running a malicious process on the same core of the processor as the victim process can extract certain secret information.", title: "Vulnerability description", }, { category: "summary", text: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", title: "Vulnerability summary", }, { category: "other", text: "This is a timing side-channel flaw on processors which implement SMT/Hyper-Threading architectures. It can result in leakage of secret data in applications such as OpenSSL that has secret dependent control flow at any granularity level. In order to exploit this flaw, the attacker needs to run a malicious process on the same core of the processor as the victim process.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5407", }, { category: "external", summary: "RHBZ#1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5407", url: "https://www.cve.org/CVERecord?id=CVE-2018-5407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", }, { category: "external", summary: "https://github.com/bbbrumley/portsmash", url: "https://github.com/bbbrumley/portsmash", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20181112.txt", url: "https://www.openssl.org/news/secadv/20181112.txt", }, ], release_date: "2018-10-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "At this time Red Hat Engineering is working on patches for openssl package in Red Hat Enterprise Linux 7 to address this issue. Until fixes are available, users are advised to review the guidance supplied in the L1 Terminal Fault vulnerability article: https://access.redhat.com/security/vulnerabilities/L1TF and decide what their exposure across shared CPU threads are and act accordingly.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "PHYSICAL", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:P/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", }, { cve: "CVE-2018-17189", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668497", }, ], notes: [ { category: "description", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: DoS via slow, unneeded request bodies", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "RHBZ#1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17189", url: "https://www.cve.org/CVERecord?id=CVE-2018-17189", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: DoS via slow, unneeded request bodies", }, { cve: "CVE-2018-17199", cwe: { id: "CWE-613", name: "Insufficient Session Expiration", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668493", }, ], notes: [ { category: "description", text: "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_session_cookie does not respect expiry time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17199", }, { category: "external", summary: "RHBZ#1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17199", url: "https://www.cve.org/CVERecord?id=CVE-2018-17199", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_session_cookie does not respect expiry time", }, { cve: "CVE-2019-0196", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695030", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the request incorrectly.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: read-after-free on a string compare", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0196", }, { category: "external", summary: "RHBZ#1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0196", url: "https://www.cve.org/CVERecord?id=CVE-2019-0196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: read-after-free on a string compare", }, { cve: "CVE-2019-0197", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695042", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: possible crash on late upgrade", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0197", }, { category: "external", summary: "RHBZ#1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0197", url: "https://www.cve.org/CVERecord?id=CVE-2019-0197", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-02-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: possible crash on late upgrade", }, { cve: "CVE-2019-0217", cwe: { id: "CWE-284", name: "Improper Access Control", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695020", }, ], notes: [ { category: "description", text: "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_auth_digest: access control bypass due to race condition", title: "Vulnerability summary", }, { category: "other", text: "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0217", }, { category: "external", summary: "RHBZ#1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0217", url: "https://www.cve.org/CVERecord?id=CVE-2019-0217", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_auth_digest: access control bypass due to race condition", }, { cve: "CVE-2019-9511", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741860", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker can request a large amount of data by manipulating window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this queue can consume excess CPU, memory, or both, leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: large amount of data requests leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "There are no mitigations available for nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9511", }, { category: "external", summary: "RHBZ#1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9511", url: "https://www.cve.org/CVERecord?id=CVE-2019-9511", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: large amount of data requests leads to denial of service", }, { acknowledgments: [ { names: [ "the Envoy security team", ], }, ], cve: "CVE-2019-9513", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1735741", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, using PRIORITY frames to flood the system, could cause excessive CPU usage and starvation of other clients. The largest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for packages nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9513", }, { category: "external", summary: "RHBZ#1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9513", url: "https://www.cve.org/CVERecord?id=CVE-2019-9513", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", url: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T17:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", }, { cve: "CVE-2019-9516", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741864", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, sending a stream of header with a 0-length header name and a 0-length header value, could cause some implementations to allocate memory for these headers and keep the allocations alive until the session dies. The can consume excess memory, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: 0-length headers lead to denial of service", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9516", }, { category: "external", summary: "RHBZ#1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9516", url: "https://www.cve.org/CVERecord?id=CVE-2019-9516", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://github.com/nghttp2/nghttp2/issues/1382#", url: "https://github.com/nghttp2/nghttp2/issues/1382#", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: 0-length headers lead to denial of service", }, { cve: "CVE-2019-9517", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741868", }, ], notes: [ { category: "description", text: "A vulnerability was found in HTTP/2. An attacker can open a HTTP/2 window so the peer can send without constraint. The TCP window remains closed so the peer cannot write the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the server's queue is setup, the responses can consume excess memory, CPU, or both, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: request for large response leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "The package httpd versions as shipped with Red Hat Enterprise Linux 5, 6 and 7 are not affected by this issue as HTTP/2 support is not provided.\nThis flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9517", }, { category: "external", summary: "RHBZ#1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9517", url: "https://www.cve.org/CVERecord?id=CVE-2019-9517", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "The httpd version shipped with Red Hat Enterprise Linux 8 provides HTTP/2 support through mod_http2 package. While mod_http2 package is not updated, users can disable HTTP/2 support as mitigation action by executing the following steps:\n\n1. Stop httpd service:\n$ systemctl stop httpd\n\n2. Remove http/2 protocol support from configuration files:\n$ sed -i 's/\\(h2\\)\\|\\(h2c\\)//g' <httpd_config_file>\n\n3. Validate configuration files to make sure all syntax is valid:\n$ apachectl configtest\n\n4. Restart httpd service:\n$ systemctl start httpd", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: request for large response leads to denial of service", }, ], }
rhsa-2020_4751
Vulnerability from csaf_redhat
Published
2020-11-04 01:44
Modified
2024-11-22 14:45
Summary
Red Hat Security Advisory: httpd:2.4 security, bug fix, and enhancement update
Notes
Topic
An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.
The following packages have been upgraded to a later upstream version: mod_http2 (1.15.7). (BZ#1814236)
Security Fix(es):
* httpd: memory corruption on early pushes (CVE-2019-10081)
* httpd: read-after-free in h2 connection shutdown (CVE-2019-10082)
* httpd: null-pointer dereference in mod_remoteip (CVE-2019-10097)
* httpd: mod_rewrite configurations vulnerable to open redirect (CVE-2020-1927)
* httpd: mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)
* httpd: mod_http2: read-after-free on a string compare (CVE-2019-0196)
* httpd: mod_http2: possible crash on late upgrade (CVE-2019-0197)
* httpd: limited cross-site scripting in mod_proxy error page (CVE-2019-10092)
* httpd: mod_rewrite potential open redirect (CVE-2019-10098)
* httpd: mod_proxy_ftp use of uninitialized value (CVE-2020-1934)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.\n\nThe following packages have been upgraded to a later upstream version: mod_http2 (1.15.7). (BZ#1814236)\n\nSecurity Fix(es):\n\n* httpd: memory corruption on early pushes (CVE-2019-10081)\n\n* httpd: read-after-free in h2 connection shutdown (CVE-2019-10082)\n\n* httpd: null-pointer dereference in mod_remoteip (CVE-2019-10097)\n\n* httpd: mod_rewrite configurations vulnerable to open redirect (CVE-2020-1927)\n\n* httpd: mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)\n\n* httpd: mod_http2: read-after-free on a string compare (CVE-2019-0196)\n\n* httpd: mod_http2: possible crash on late upgrade (CVE-2019-0197)\n\n* httpd: limited cross-site scripting in mod_proxy error page (CVE-2019-10092)\n\n* httpd: mod_rewrite potential open redirect (CVE-2019-10098)\n\n* httpd: mod_proxy_ftp use of uninitialized value (CVE-2020-1934)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:4751", url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/", url: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/", }, { category: "external", summary: "1209162", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1209162", }, { category: "external", summary: "1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "1743956", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743956", }, { category: "external", summary: "1743959", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743959", }, { category: "external", summary: "1743966", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743966", }, { category: "external", summary: "1743974", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743974", }, { category: "external", summary: "1743996", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743996", }, { category: "external", summary: "1771847", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1771847", }, { category: "external", summary: "1814236", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1814236", }, { category: "external", summary: "1820761", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1820761", }, { category: "external", summary: "1820772", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1820772", }, { category: "external", summary: "1832844", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1832844", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4751.json", }, ], title: "Red Hat Security Advisory: httpd:2.4 security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T14:45:49+00:00", generator: { date: "2024-11-22T14:45:49+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2020:4751", initial_release_date: "2020-11-04T01:44:47+00:00", revision_history: [ { date: "2020-11-04T01:44:47+00:00", number: "1", summary: "Initial version", }, { date: "2020-11-04T01:44:47+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T14:45:49+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "httpd:2.4:8030020200818000036:30b713e6", product: { name: "httpd:2.4:8030020200818000036:30b713e6", product_id: "httpd:2.4:8030020200818000036:30b713e6", product_identification_helper: { purl: "pkg:rpmmod/redhat/httpd@2.4:8030020200818000036:30b713e6", }, }, }, { category: "product_version", name: "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product: { name: "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product_id: "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-filesystem@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=noarch", }, }, }, { category: "product_version", name: "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product: { name: "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product_id: "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-manual@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", product: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", product_id: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=src", }, }, }, { category: "product_version", name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", product: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", product_id: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=src", }, }, }, { category: "product_version", name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", product: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", product_id: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=src&epoch=1", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debugsource@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-devel@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_id: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=x86_64", }, }, }, { category: "product_version", name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_id: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debuginfo@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=x86_64", }, }, }, { category: "product_version", name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_id: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debugsource@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=x86_64", }, }, }, { category: "product_version", name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_id: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_id: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debuginfo@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_id: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debugsource@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64&epoch=1", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debugsource@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-devel@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_id: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=s390x", }, }, }, { category: "product_version", name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_id: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debuginfo@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=s390x", }, }, }, { category: "product_version", name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_id: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debugsource@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=s390x", }, }, }, { category: "product_version", name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_id: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_id: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debuginfo@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_id: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debugsource@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x&epoch=1", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debugsource@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-devel@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_id: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_id: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debuginfo@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_id: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debugsource@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_id: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_id: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debuginfo@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_id: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debugsource@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le&epoch=1", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debugsource@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-devel@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_id: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=aarch64", }, }, }, { category: "product_version", name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_id: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debuginfo@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=aarch64", }, }, }, { category: "product_version", name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_id: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debugsource@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=aarch64", }, }, }, { category: "product_version", name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_id: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_id: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debuginfo@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_id: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debugsource@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64&epoch=1", }, }, }, ], category: "architecture", name: "aarch64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, product_reference: "httpd:2.4:8030020200818000036:30b713e6", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", }, product_reference: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", }, product_reference: "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", }, product_reference: "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", }, product_reference: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", }, product_reference: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", }, product_reference: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", }, product_reference: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", }, product_reference: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", }, product_reference: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", }, product_reference: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", }, product_reference: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", }, product_reference: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", }, product_reference: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", }, product_reference: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", }, product_reference: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", }, product_reference: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", }, product_reference: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", }, product_reference: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", }, product_reference: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", }, product_reference: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", }, product_reference: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", }, product_reference: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", }, product_reference: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", }, product_reference: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", }, product_reference: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", }, product_reference: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", }, product_reference: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", }, product_reference: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", }, product_reference: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, ], }, vulnerabilities: [ { cve: "CVE-2018-17189", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668497", }, ], notes: [ { category: "description", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: DoS via slow, unneeded request bodies", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "RHBZ#1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17189", url: "https://www.cve.org/CVERecord?id=CVE-2018-17189", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: DoS via slow, unneeded request bodies", }, { cve: "CVE-2019-0196", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695030", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the request incorrectly.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: read-after-free on a string compare", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0196", }, { category: "external", summary: "RHBZ#1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0196", url: "https://www.cve.org/CVERecord?id=CVE-2019-0196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: read-after-free on a string compare", }, { cve: "CVE-2019-0197", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695042", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: possible crash on late upgrade", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0197", }, { category: "external", summary: "RHBZ#1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0197", url: "https://www.cve.org/CVERecord?id=CVE-2019-0197", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-02-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: possible crash on late upgrade", }, { cve: "CVE-2019-10081", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743966", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache httpd, in mod_http2. Under certain circumstances, HTTP/2 early pushes could lead to memory corruption, causing a server to crash.", title: "Vulnerability description", }, { category: "summary", text: "httpd: memory corruption on early pushes", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10081", }, { category: "external", summary: "RHBZ#1743966", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743966", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10081", url: "https://www.cve.org/CVERecord?id=CVE-2019-10081", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10081", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10081", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "workaround", details: "This flaw is only exploitable if Apache httpd is configured to respond to HTTP/2 requests, which is done by including \"h2\" or \"h2c\" in the \"Protocols\" list in a configuration file. The following command can be used to search for possible vulnerable configurations: \n\n grep -R '^\\s*Protocols\\>.*\\<h2\\>' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_http2.html", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: memory corruption on early pushes", }, { cve: "CVE-2019-10082", discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743974", }, ], notes: [ { category: "description", text: "A read-after-free vulnerability was discovered in Apache httpd, in mod_http2. A specially crafted http/2 client session could cause the server to read memory that was previously freed during connection shutdown, potentially leading to a crash.", title: "Vulnerability description", }, { category: "summary", text: "httpd: read-after-free in h2 connection shutdown", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10082", }, { category: "external", summary: "RHBZ#1743974", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743974", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10082", url: "https://www.cve.org/CVERecord?id=CVE-2019-10082", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10082", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10082", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "workaround", details: "This flaw is only exploitable if Apache httpd is configured to respond to HTTP/2 requests, which is done by including \"h2\" or \"h2c\" in the \"Protocols\" list in a configuration file. The following command can be used to search for possible vulnerable configurations: \n\n grep -R '^\\s*Protocols\\>.*\\<h2\\>' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_http2.html", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: read-after-free in h2 connection shutdown", }, { cve: "CVE-2019-10092", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743956", }, ], notes: [ { category: "description", text: "A cross-site scripting vulnerability was found in Apache httpd, affecting the mod_proxy error page. Under certain circumstances, a crafted link could inject content into the HTML displayed in the error page, potentially leading to client-side exploitation.", title: "Vulnerability description", }, { category: "summary", text: "httpd: limited cross-site scripting in mod_proxy error page", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10092", }, { category: "external", summary: "RHBZ#1743956", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743956", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10092", url: "https://www.cve.org/CVERecord?id=CVE-2019-10092", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10092", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10092", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "workaround", details: "This flaw is only exploitable if Proxy* directives are used in Apache httpd configuration. The following command can be used to search for possible vulnerable configurations:\n\n grep -R '^\\s*Proxy' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_proxy.html", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.7, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: limited cross-site scripting in mod_proxy error page", }, { cve: "CVE-2019-10097", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743996", }, ], notes: [ { category: "description", text: "A vulnerability was discovered in Apache httpd, in mod_remoteip. A trusted proxy using the \"PROXY\" protocol could send specially crafted headers that can cause httpd to experience a stack buffer overflow or NULL pointer dereference, leading to a crash or other potential consequences.\r\n\r\nThis issue could only be exploited by configured trusted intermediate proxy servers. HTTP clients such as browsers could not exploit the vulnerability.", title: "Vulnerability description", }, { category: "summary", text: "httpd: null-pointer dereference in mod_remoteip", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10097", }, { category: "external", summary: "RHBZ#1743996", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743996", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10097", url: "https://www.cve.org/CVERecord?id=CVE-2019-10097", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10097", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10097", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "workaround", details: "This flaw is only exploitable if RemoteIP* directives are used in Apache httpd configuration. The following command can be used to search for possible vulnerable configurations:\n\n grep -R '^\\s*RemoteIP' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_remoteip.html", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.6, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: null-pointer dereference in mod_remoteip", }, { cve: "CVE-2019-10098", discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743959", }, ], notes: [ { category: "description", text: "A vulnerability was discovered in Apache httpd, in mod_rewrite. Certain self-referential mod_rewrite rules could be fooled by encoded newlines, causing them to redirect to an unexpected location. An attacker could abuse this flaw in a phishing attack or as part of a client-side attack on browsers.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_rewrite potential open redirect", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10098", }, { category: "external", summary: "RHBZ#1743959", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743959", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10098", url: "https://www.cve.org/CVERecord?id=CVE-2019-10098", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10098", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10098", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "workaround", details: "This flaw requires the use of certain Rewrite configuration directives. The following command can be used to search for possible vulnerable configurations:\n\n grep -R '^\\s*Rewrite' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_rewrite.html", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 3.7, baseSeverity: "LOW", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_rewrite potential open redirect", }, { cve: "CVE-2020-1927", cwe: { id: "CWE-601", name: "URL Redirection to Untrusted Site ('Open Redirect')", }, discovery_date: "2020-04-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1820761", }, ], notes: [ { category: "description", text: "A flaw was found in Apache HTTP Server (httpd) versions 2.4.0 to 2.4.41. Redirects configured with mod_rewrite that were intended to be self-referential might be fooled by encoded newlines and redirected instead to an unexpected URL within the request URL.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_rewrite configurations vulnerable to open redirect", title: "Vulnerability summary", }, { category: "other", text: "This issue only affects httpd versions between 2.4.0 and 2.4.41. Therefore Red Hat Enterprise Linux 5 and 6 are not affected by this flaw.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-1927", }, { category: "external", summary: "RHBZ#1820761", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1820761", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-1927", url: "https://www.cve.org/CVERecord?id=CVE-2020-1927", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-1927", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-1927", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2020-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.1, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_rewrite configurations vulnerable to open redirect", }, { cve: "CVE-2020-1934", cwe: { id: "CWE-456", name: "Missing Initialization of a Variable", }, discovery_date: "2020-04-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1820772", }, ], notes: [ { category: "description", text: "A flaw was found in Apache's HTTP server (httpd) .The mod_proxy_ftp module may use uninitialized memory with proxying to a malicious FTP server. The highest threat from this vulnerability is to data confidentiality.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_proxy_ftp use of uninitialized value", title: "Vulnerability summary", }, { category: "other", text: "This flaw is caused by use of an uninitialized memory variable. Practically this has no impact, but in some corner cases it is possible that the contents of this variable could be read by a remote process, causing loss of confidentiality as a result of this. There is no evidence of code execution.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-1934", }, { category: "external", summary: "RHBZ#1820772", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1820772", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-1934", url: "https://www.cve.org/CVERecord?id=CVE-2020-1934", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-1934", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-1934", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2020-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 3.7, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_proxy_ftp use of uninitialized value", }, ], }
RHSA-2019:4126
Vulnerability from csaf_redhat
Published
2019-12-10 07:59
Modified
2025-02-02 20:19
Summary
Red Hat Security Advisory: httpd24-httpd security, bug fix, and enhancement update
Notes
Topic
An update for httpd24, httpd24-httpd, and httpd24-nghttp2 is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The Apache HTTP Server is a powerful, efficient, and extensible web server. The httpd24 packages provide a recent stable release of version 2.4 of the Apache HTTP Server, along with the mod_auth_kerb module.
Security Fix(es):
* httpd: mod_session_cookie does not respect expiry time (CVE-2018-17199)
* httpd: mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)
* httpd: null-pointer dereference in mod_remoteip (CVE-2019-10097)
* httpd: mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)
* httpd: URL normalization inconsistency (CVE-2019-0220)
* httpd: limited cross-site scripting in mod_proxy error page (CVE-2019-10092)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang (BZ#1669213)
* httpd can not be started with mod_md enabled (BZ#1673019)
* Rebuild metapackage with latest scl-utils (BZ#1696527)
* fix a regression introduced in r1740928 (BZ#1707636)
* duplicated cookie in Apache httpd with mod_session (BZ#1725922)
* Unexpected OCSP in proxy SSL connection (BZ#1744120)
Enhancement(s):
* RFE: updated collection for httpd 2.4 (BZ#1726706)
Additional Changes:
For detailed information on changes in this release, see the Red Hat Software Collections 3.4 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for httpd24, httpd24-httpd, and httpd24-nghttp2 is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The Apache HTTP Server is a powerful, efficient, and extensible web server. The httpd24 packages provide a recent stable release of version 2.4 of the Apache HTTP Server, along with the mod_auth_kerb module.\n\nSecurity Fix(es):\n\n* httpd: mod_session_cookie does not respect expiry time (CVE-2018-17199)\n\n* httpd: mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)\n\n* httpd: null-pointer dereference in mod_remoteip (CVE-2019-10097)\n\n* httpd: mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)\n\n* httpd: URL normalization inconsistency (CVE-2019-0220)\n\n* httpd: limited cross-site scripting in mod_proxy error page (CVE-2019-10092)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang (BZ#1669213)\n\n* httpd can not be started with mod_md enabled (BZ#1673019)\n\n* Rebuild metapackage with latest scl-utils (BZ#1696527)\n\n* fix a regression introduced in r1740928 (BZ#1707636)\n\n* duplicated cookie in Apache httpd with mod_session (BZ#1725922)\n\n* Unexpected OCSP in proxy SSL connection (BZ#1744120)\n\nEnhancement(s):\n\n* RFE: updated collection for httpd 2.4 (BZ#1726706)\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Software Collections 3.4 Release Notes linked from the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2019:4126", url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_software_collections/3/html/3.4_release_notes/", url: "https://access.redhat.com/documentation/en-us/red_hat_software_collections/3/html/3.4_release_notes/", }, { category: "external", summary: "1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "1669213", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1669213", }, { category: "external", summary: "1673019", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1673019", }, { category: "external", summary: "1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "1695036", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695036", }, { category: "external", summary: "1696527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1696527", }, { category: "external", summary: "1707636", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1707636", }, { category: "external", summary: "1725922", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1725922", }, { category: "external", summary: "1743956", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743956", }, { category: "external", summary: "1743996", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743996", }, { category: "external", summary: "1744120", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1744120", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_4126.json", }, ], title: "Red Hat Security Advisory: httpd24-httpd security, bug fix, and enhancement update", tracking: { current_release_date: "2025-02-02T20:19:34+00:00", generator: { date: "2025-02-02T20:19:34+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.6", }, }, id: "RHSA-2019:4126", initial_release_date: "2019-12-10T07:59:33+00:00", revision_history: [ { date: "2019-12-10T07:59:33+00:00", number: "1", summary: "Initial version", }, { date: "2019-12-10T07:59:33+00:00", number: "2", summary: "Last updated version", }, { date: "2025-02-02T20:19:34+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el6", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el6", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, ], category: "product_family", name: "Red Hat Software Collections", }, { branches: [ { category: "product_version", name: "httpd24-0:1.1-19.el6.x86_64", product: { name: "httpd24-0:1.1-19.el6.x86_64", product_id: "httpd24-0:1.1-19.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-build-0:1.1-19.el6.x86_64", product: { name: "httpd24-build-0:1.1-19.el6.x86_64", product_id: "httpd24-build-0:1.1-19.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-build@1.1-19.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-runtime-0:1.1-19.el6.x86_64", product: { name: "httpd24-runtime-0:1.1-19.el6.x86_64", product_id: "httpd24-runtime-0:1.1-19.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-runtime@1.1-19.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-scldevel-0:1.1-19.el6.x86_64", product: { name: "httpd24-scldevel-0:1.1-19.el6.x86_64", product_id: "httpd24-scldevel-0:1.1-19.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", product: { name: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", product_id: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", product: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", product_id: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", product: { name: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", product_id: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", product: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", product_id: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-httpd-0:2.4.34-15.el6.x86_64", product_id: "httpd24-httpd-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", product_id: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", product_id: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", product_id: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", product: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", product_id: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-mod_session-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-mod_session-0:2.4.34-15.el6.x86_64", product_id: "httpd24-mod_session-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", product: { name: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", product_id: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", product_id: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-0:1.1-19.el7.x86_64", product: { name: "httpd24-0:1.1-19.el7.x86_64", product_id: "httpd24-0:1.1-19.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-runtime-0:1.1-19.el7.x86_64", product: { name: "httpd24-runtime-0:1.1-19.el7.x86_64", product_id: "httpd24-runtime-0:1.1-19.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-runtime@1.1-19.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-scldevel-0:1.1-19.el7.x86_64", product: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64", product_id: "httpd24-scldevel-0:1.1-19.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", product: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", product_id: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", product: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", product_id: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", product: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", product_id: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", product: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", product_id: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64", product_id: "httpd24-httpd-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", product_id: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", product_id: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", product_id: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", product_id: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_md@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", product: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", product_id: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", product_id: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", product: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", product_id: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", product_id: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el7?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "httpd24-0:1.1-19.el6.src", product: { name: "httpd24-0:1.1-19.el6.src", product_id: "httpd24-0:1.1-19.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el6?arch=src", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el6.src", product: { name: "httpd24-nghttp2-0:1.7.1-8.el6.src", product_id: "httpd24-nghttp2-0:1.7.1-8.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el6?arch=src", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el6.src", product: { name: "httpd24-httpd-0:2.4.34-15.el6.src", product_id: "httpd24-httpd-0:2.4.34-15.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el6?arch=src", }, }, }, { category: "product_version", name: "httpd24-0:1.1-19.el7.src", product: { name: "httpd24-0:1.1-19.el7.src", product_id: "httpd24-0:1.1-19.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=src", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el7.src", product: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src", product_id: "httpd24-nghttp2-0:1.7.1-8.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=src", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el7.src", product: { name: "httpd24-httpd-0:2.4.34-15.el7.src", product_id: "httpd24-httpd-0:2.4.34-15.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", product: { name: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", product_id: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-manual@2.4.34-15.el6?arch=noarch", }, }, }, { category: "product_version", name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", product: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", product_id: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-manual@2.4.34-15.el7?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "httpd24-0:1.1-19.el7.ppc64le", product: { name: "httpd24-0:1.1-19.el7.ppc64le", product_id: "httpd24-0:1.1-19.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-runtime-0:1.1-19.el7.ppc64le", product: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le", product_id: "httpd24-runtime-0:1.1-19.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-runtime@1.1-19.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-scldevel-0:1.1-19.el7.ppc64le", product: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le", product_id: "httpd24-scldevel-0:1.1-19.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", product: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", product_id: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", product: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", product_id: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", product: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", product_id: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", product: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", product_id: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_md@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", product: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", product_id: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el7?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", product: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", product_id: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el7?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el7?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "httpd24-0:1.1-19.el7.s390x", product: { name: "httpd24-0:1.1-19.el7.s390x", product_id: "httpd24-0:1.1-19.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-runtime-0:1.1-19.el7.s390x", product: { name: "httpd24-runtime-0:1.1-19.el7.s390x", product_id: "httpd24-runtime-0:1.1-19.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-runtime@1.1-19.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-scldevel-0:1.1-19.el7.s390x", product: { name: "httpd24-scldevel-0:1.1-19.el7.s390x", product_id: "httpd24-scldevel-0:1.1-19.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", product: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", product_id: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", product: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", product_id: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", product: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", product_id: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", product: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", product_id: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el7.s390x", product: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x", product_id: "httpd24-httpd-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", product: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", product_id: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", product: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", product_id: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", product: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", product_id: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-mod_md-0:2.4.34-15.el7.s390x", product: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x", product_id: "httpd24-mod_md-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_md@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", product: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", product_id: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el7?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "httpd24-mod_session-0:2.4.34-15.el7.s390x", product: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x", product_id: "httpd24-mod_session-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", product: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", product_id: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el7?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", product: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", product_id: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el7?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "httpd24-0:1.1-19.el7.aarch64", product: { name: "httpd24-0:1.1-19.el7.aarch64", product_id: "httpd24-0:1.1-19.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-runtime-0:1.1-19.el7.aarch64", product: { name: "httpd24-runtime-0:1.1-19.el7.aarch64", product_id: "httpd24-runtime-0:1.1-19.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-runtime@1.1-19.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-scldevel-0:1.1-19.el7.aarch64", product: { name: "httpd24-scldevel-0:1.1-19.el7.aarch64", product_id: "httpd24-scldevel-0:1.1-19.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", product: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", product_id: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", product: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", product_id: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", product: { name: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", product_id: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", product: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", product_id: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-httpd-0:2.4.34-15.el7.aarch64", product_id: "httpd24-httpd-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", product_id: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", product_id: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", product_id: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", product_id: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_md@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", product: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", product_id: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el7?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", product_id: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", product: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", product_id: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el7?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", product_id: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el7?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", }, product_reference: "httpd24-0:1.1-19.el6.src", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-build-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-build-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el6.src", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el6.src", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", }, product_reference: "httpd24-0:1.1-19.el6.src", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-build-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-build-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el6.src", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el6.src", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, ], }, vulnerabilities: [ { cve: "CVE-2018-17189", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668497", }, ], notes: [ { category: "description", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: DoS via slow, unneeded request bodies", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "RHBZ#1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17189", url: "https://www.cve.org/CVERecord?id=CVE-2018-17189", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: DoS via slow, unneeded request bodies", }, { cve: "CVE-2018-17199", cwe: { id: "CWE-613", name: "Insufficient Session Expiration", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668493", }, ], notes: [ { category: "description", text: "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_session_cookie does not respect expiry time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17199", }, { category: "external", summary: "RHBZ#1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17199", url: "https://www.cve.org/CVERecord?id=CVE-2018-17199", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_session_cookie does not respect expiry time", }, { cve: "CVE-2019-0217", cwe: { id: "CWE-284", name: "Improper Access Control", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695020", }, ], notes: [ { category: "description", text: "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_auth_digest: access control bypass due to race condition", title: "Vulnerability summary", }, { category: "other", text: "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0217", }, { category: "external", summary: "RHBZ#1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0217", url: "https://www.cve.org/CVERecord?id=CVE-2019-0217", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { category: "workaround", details: "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_auth_digest: access control bypass due to race condition", }, { cve: "CVE-2019-0220", cwe: { id: "CWE-41", name: "Improper Resolution of Path Equivalence", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695036", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.0 to 2.4.38. When the path component of a request URL contains multiple consecutive slashes ('/'), directives such as LocationMatch and RewriteRule must account for duplicates in regular expressions while other aspects of the servers processing will implicitly collapse them.", title: "Vulnerability description", }, { category: "summary", text: "httpd: URL normalization inconsistency", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Low, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0220", }, { category: "external", summary: "RHBZ#1695036", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695036", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0220", url: "https://www.cve.org/CVERecord?id=CVE-2019-0220", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0220", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0220", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { category: "workaround", details: "This flaw can be mitigation by replacing multiple consecutive slashes, used in directives that match against the path component of the request URL with regular expressions.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "LOW", baseScore: 3.3, baseSeverity: "LOW", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: URL normalization inconsistency", }, { cve: "CVE-2019-10092", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743956", }, ], notes: [ { category: "description", text: "A cross-site scripting vulnerability was found in Apache httpd, affecting the mod_proxy error page. Under certain circumstances, a crafted link could inject content into the HTML displayed in the error page, potentially leading to client-side exploitation.", title: "Vulnerability description", }, { category: "summary", text: "httpd: limited cross-site scripting in mod_proxy error page", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10092", }, { category: "external", summary: "RHBZ#1743956", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743956", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10092", url: "https://www.cve.org/CVERecord?id=CVE-2019-10092", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10092", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10092", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { category: "workaround", details: "This flaw is only exploitable if Proxy* directives are used in Apache httpd configuration. The following command can be used to search for possible vulnerable configurations:\n\n grep -R '^\\s*Proxy' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_proxy.html", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.7, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: limited cross-site scripting in mod_proxy error page", }, { cve: "CVE-2019-10097", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743996", }, ], notes: [ { category: "description", text: "A vulnerability was discovered in Apache httpd, in mod_remoteip. A trusted proxy using the \"PROXY\" protocol could send specially crafted headers that can cause httpd to experience a stack buffer overflow or NULL pointer dereference, leading to a crash or other potential consequences.\r\n\r\nThis issue could only be exploited by configured trusted intermediate proxy servers. HTTP clients such as browsers could not exploit the vulnerability.", title: "Vulnerability description", }, { category: "summary", text: "httpd: null-pointer dereference in mod_remoteip", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10097", }, { category: "external", summary: "RHBZ#1743996", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743996", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10097", url: "https://www.cve.org/CVERecord?id=CVE-2019-10097", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10097", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10097", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { category: "workaround", details: "This flaw is only exploitable if RemoteIP* directives are used in Apache httpd configuration. The following command can be used to search for possible vulnerable configurations:\n\n grep -R '^\\s*RemoteIP' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_remoteip.html", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.6, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: null-pointer dereference in mod_remoteip", }, ], }
rhsa-2019:3932
Vulnerability from csaf_redhat
Published
2019-11-20 16:22
Modified
2025-03-17 01:33
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release on RHEL 6
Notes
Topic
Updated packages that provide Red Hat JBoss Core Services Pack Apache Server 2.4.37 and fix several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737) * openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734) * mod_auth_digest: access control bypass due to race condition (CVE-2019-0217) * openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407) * mod_session_cookie does not respect expiry time (CVE-2018-17199) * mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189) * mod_http2: possible crash on late upgrade (CVE-2019-0197) * mod_http2: read-after-free on a string compare (CVE-2019-0196) * nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511) * nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513) * mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516) * mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Updated packages that provide Red Hat JBoss Core Services Pack Apache Server 2.4.37 and fix several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737) * openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734) * mod_auth_digest: access control bypass due to race condition (CVE-2019-0217) * openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407) * mod_session_cookie does not respect expiry time (CVE-2018-17199) * mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189) * mod_http2: possible crash on late upgrade (CVE-2019-0197) * mod_http2: read-after-free on a string compare (CVE-2019-0196) * nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511) * nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513) * mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516) * mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2019:3932", url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "JBCS-798", url: "https://issues.redhat.com/browse/JBCS-798", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3932.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release on RHEL 6", tracking: { current_release_date: "2025-03-17T01:33:29+00:00", generator: { date: "2025-03-17T01:33:29+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2019:3932", initial_release_date: "2019-11-20T16:22:09+00:00", revision_history: [ { date: "2019-11-20T16:22:09+00:00", number: "1", summary: "Initial version", }, { date: "2020-01-06T13:05:52+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-17T01:33:29+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Core Services on RHEL 6 Server", product: { name: "Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_core_services:1::el6", }, }, }, ], category: "product_family", name: "Red Hat JBoss Core Services", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", product: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", product_id: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", product: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", product_id: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-devel@2.11-20.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", product: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", product_id: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-debuginfo@2.11-20.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-63.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-63.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", product: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", product_id: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", product: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", product_id: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-devel@1.0.6-7.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", product: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", product_id: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-debuginfo@1.0.6-7.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", product: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", product_id: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", product: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", product_id: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.39.2-4.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", product: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", product_id: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.39.2-4.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", product: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", product_id: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", product: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", product_id: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl@7.64.1-14.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", product: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", product_id: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl-devel@7.64.1-14.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", product: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", product_id: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl-debuginfo@7.64.1-14.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_md@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.37-33.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.37-33.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.12-9.Final_redhat_2.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.46-22.redhat_1.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.46-22.redhat_1.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.46-22.redhat_1.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.2-16.GA.jbcs.el6?arch=i686", }, }, }, ], category: "architecture", name: "i686", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", product_id: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", product_id: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-devel@2.11-20.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", product_id: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-debuginfo@2.11-20.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-63.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-63.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", product_id: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", product_id: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-devel@1.0.6-7.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", product_id: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-debuginfo@1.0.6-7.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", product_id: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", product_id: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.39.2-4.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", product_id: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.39.2-4.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", product_id: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", product_id: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl@7.64.1-14.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", product_id: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl-devel@7.64.1-14.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", product_id: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl-debuginfo@7.64.1-14.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_md@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.37-33.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.37-33.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.12-9.Final_redhat_2.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.46-22.redhat_1.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.46-22.redhat_1.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.46-22.redhat_1.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.2-16.GA.jbcs.el6?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", product: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", product_id: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", product: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", product_id: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", product: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", product_id: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el6?arch=src&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", product: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", product_id: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", product: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", product_id: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", product: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", product_id: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", product: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", product_id: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", product: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", product_id: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", product: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", product_id: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", product: { name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", product_id: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.46-22.redhat_1.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", product: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", product_id: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el6?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", product: { name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", product_id: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-manual@2.4.37-33.jbcs.el6?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", }, product_reference: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", }, product_reference: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", }, product_reference: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", }, product_reference: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", }, product_reference: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", }, product_reference: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", }, product_reference: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", }, product_reference: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", }, product_reference: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", }, product_reference: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", }, product_reference: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", }, product_reference: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, ], }, vulnerabilities: [ { cve: "CVE-2018-0734", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-10-30T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1644364", }, ], notes: [ { category: "description", text: "The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).", title: "Vulnerability description", }, { category: "summary", text: "openssl: timing side channel attack in the DSA signature algorithm", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0734", }, { category: "external", summary: "RHBZ#1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0734", url: "https://www.cve.org/CVERecord?id=CVE-2018-0734", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", }, ], release_date: "2018-10-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: timing side channel attack in the DSA signature algorithm", }, { cve: "CVE-2018-0737", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-04-17T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1568253", }, ], notes: [ { category: "description", text: "OpenSSL RSA key generation was found to be vulnerable to cache side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover parts of the private key.", title: "Vulnerability description", }, { category: "summary", text: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0737", }, { category: "external", summary: "RHBZ#1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0737", url: "https://www.cve.org/CVERecord?id=CVE-2018-0737", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", }, { category: "external", summary: "http://www.openwall.com/lists/oss-security/2018/04/16/3", url: "http://www.openwall.com/lists/oss-security/2018/04/16/3", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20180416.txt", url: "https://www.openssl.org/news/secadv/20180416.txt", }, ], release_date: "2018-04-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 3.3, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", }, { acknowledgments: [ { names: [ "Alejandro Cabrera Aldaya", ], organization: "Universidad Tecnologica de la Habana CUJAE; Cuba", }, { names: [ "Billy Bob Brumley", "Cesar Pereida Garcia", "Sohaib ul Hassan", ], }, { names: [ "Nicola Tuveri", ], organization: "Tampere University of Technology; Finland", }, ], cve: "CVE-2018-5407", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2018-11-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1645695", }, ], notes: [ { category: "description", text: "A microprocessor side-channel vulnerability was found on SMT (e.g, Hyper-Threading) architectures. An attacker running a malicious process on the same core of the processor as the victim process can extract certain secret information.", title: "Vulnerability description", }, { category: "summary", text: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", title: "Vulnerability summary", }, { category: "other", text: "This is a timing side-channel flaw on processors which implement SMT/Hyper-Threading architectures. It can result in leakage of secret data in applications such as OpenSSL that has secret dependent control flow at any granularity level. In order to exploit this flaw, the attacker needs to run a malicious process on the same core of the processor as the victim process.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5407", }, { category: "external", summary: "RHBZ#1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5407", url: "https://www.cve.org/CVERecord?id=CVE-2018-5407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", }, { category: "external", summary: "https://github.com/bbbrumley/portsmash", url: "https://github.com/bbbrumley/portsmash", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20181112.txt", url: "https://www.openssl.org/news/secadv/20181112.txt", }, ], release_date: "2018-10-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "At this time Red Hat Engineering is working on patches for openssl package in Red Hat Enterprise Linux 7 to address this issue. Until fixes are available, users are advised to review the guidance supplied in the L1 Terminal Fault vulnerability article: https://access.redhat.com/security/vulnerabilities/L1TF and decide what their exposure across shared CPU threads are and act accordingly.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "PHYSICAL", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:P/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", }, { cve: "CVE-2018-17189", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668497", }, ], notes: [ { category: "description", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: DoS via slow, unneeded request bodies", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "RHBZ#1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17189", url: "https://www.cve.org/CVERecord?id=CVE-2018-17189", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: DoS via slow, unneeded request bodies", }, { cve: "CVE-2018-17199", cwe: { id: "CWE-613", name: "Insufficient Session Expiration", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668493", }, ], notes: [ { category: "description", text: "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_session_cookie does not respect expiry time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17199", }, { category: "external", summary: "RHBZ#1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17199", url: "https://www.cve.org/CVERecord?id=CVE-2018-17199", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_session_cookie does not respect expiry time", }, { cve: "CVE-2019-0196", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695030", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the request incorrectly.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: read-after-free on a string compare", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0196", }, { category: "external", summary: "RHBZ#1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0196", url: "https://www.cve.org/CVERecord?id=CVE-2019-0196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: read-after-free on a string compare", }, { cve: "CVE-2019-0197", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695042", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: possible crash on late upgrade", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0197", }, { category: "external", summary: "RHBZ#1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0197", url: "https://www.cve.org/CVERecord?id=CVE-2019-0197", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-02-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: possible crash on late upgrade", }, { cve: "CVE-2019-0217", cwe: { id: "CWE-284", name: "Improper Access Control", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695020", }, ], notes: [ { category: "description", text: "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_auth_digest: access control bypass due to race condition", title: "Vulnerability summary", }, { category: "other", text: "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0217", }, { category: "external", summary: "RHBZ#1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0217", url: "https://www.cve.org/CVERecord?id=CVE-2019-0217", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_auth_digest: access control bypass due to race condition", }, { cve: "CVE-2019-9511", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741860", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker can request a large amount of data by manipulating window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this queue can consume excess CPU, memory, or both, leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: large amount of data requests leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "There are no mitigations available for nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9511", }, { category: "external", summary: "RHBZ#1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9511", url: "https://www.cve.org/CVERecord?id=CVE-2019-9511", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: large amount of data requests leads to denial of service", }, { acknowledgments: [ { names: [ "the Envoy security team", ], }, ], cve: "CVE-2019-9513", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1735741", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, using PRIORITY frames to flood the system, could cause excessive CPU usage and starvation of other clients. The largest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for packages nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9513", }, { category: "external", summary: "RHBZ#1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9513", url: "https://www.cve.org/CVERecord?id=CVE-2019-9513", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", url: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T17:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", }, { cve: "CVE-2019-9516", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741864", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, sending a stream of header with a 0-length header name and a 0-length header value, could cause some implementations to allocate memory for these headers and keep the allocations alive until the session dies. The can consume excess memory, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: 0-length headers lead to denial of service", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9516", }, { category: "external", summary: "RHBZ#1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9516", url: "https://www.cve.org/CVERecord?id=CVE-2019-9516", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://github.com/nghttp2/nghttp2/issues/1382#", url: "https://github.com/nghttp2/nghttp2/issues/1382#", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: 0-length headers lead to denial of service", }, { cve: "CVE-2019-9517", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741868", }, ], notes: [ { category: "description", text: "A vulnerability was found in HTTP/2. An attacker can open a HTTP/2 window so the peer can send without constraint. The TCP window remains closed so the peer cannot write the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the server's queue is setup, the responses can consume excess memory, CPU, or both, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: request for large response leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "The package httpd versions as shipped with Red Hat Enterprise Linux 5, 6 and 7 are not affected by this issue as HTTP/2 support is not provided.\nThis flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9517", }, { category: "external", summary: "RHBZ#1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9517", url: "https://www.cve.org/CVERecord?id=CVE-2019-9517", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "The httpd version shipped with Red Hat Enterprise Linux 8 provides HTTP/2 support through mod_http2 package. While mod_http2 package is not updated, users can disable HTTP/2 support as mitigation action by executing the following steps:\n\n1. Stop httpd service:\n$ systemctl stop httpd\n\n2. Remove http/2 protocol support from configuration files:\n$ sed -i 's/\\(h2\\)\\|\\(h2c\\)//g' <httpd_config_file>\n\n3. Validate configuration files to make sure all syntax is valid:\n$ apachectl configtest\n\n4. Restart httpd service:\n$ systemctl start httpd", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: request for large response leads to denial of service", }, ], }
rhsa-2019:3935
Vulnerability from csaf_redhat
Published
2019-11-20 16:08
Modified
2025-03-17 01:33
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release
Notes
Topic
Red Hat JBoss Core Services Pack Apache Server 2.4.37 zip release
for RHEL 6, RHEL 7 and Microsoft Windows is available.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience.
This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737) * openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734) * mod_auth_digest: access control bypass due to race condition (CVE-2019-0217) * openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407) * mod_session_cookie does not respect expiry time (CVE-2018-17199) * mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189) * mod_http2: possible crash on late upgrade (CVE-2019-0197) * mod_http2: read-after-free on a string compare (CVE-2019-0196) * nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511) * nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513) * mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516) * mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat JBoss Core Services Pack Apache Server 2.4.37 zip release\nfor RHEL 6, RHEL 7 and Microsoft Windows is available.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience.\n\nThis release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737) * openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734) * mod_auth_digest: access control bypass due to race condition (CVE-2019-0217) * openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407) * mod_session_cookie does not respect expiry time (CVE-2018-17199) * mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189) * mod_http2: possible crash on late upgrade (CVE-2019-0197) * mod_http2: read-after-free on a string compare (CVE-2019-0196) * nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511) * nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513) * mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516) * mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2019:3935", url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "JBCS-798", url: "https://issues.redhat.com/browse/JBCS-798", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3935.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release", tracking: { current_release_date: "2025-03-17T01:33:16+00:00", generator: { date: "2025-03-17T01:33:16+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2019:3935", initial_release_date: "2019-11-20T16:08:18+00:00", revision_history: [ { date: "2019-11-20T16:08:18+00:00", number: "1", summary: "Initial version", }, { date: "2020-01-06T13:01:52+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-17T01:33:16+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Text-Only JBCS", product: { name: "Text-Only JBCS", product_id: "Text-Only JBCS", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_core_services:1", }, }, }, ], category: "product_family", name: "Red Hat JBoss Core Services", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { cve: "CVE-2018-0734", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-10-30T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1644364", }, ], notes: [ { category: "description", text: "The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).", title: "Vulnerability description", }, { category: "summary", text: "openssl: timing side channel attack in the DSA signature algorithm", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0734", }, { category: "external", summary: "RHBZ#1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0734", url: "https://www.cve.org/CVERecord?id=CVE-2018-0734", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", }, ], release_date: "2018-10-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: timing side channel attack in the DSA signature algorithm", }, { cve: "CVE-2018-0737", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-04-17T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1568253", }, ], notes: [ { category: "description", text: "OpenSSL RSA key generation was found to be vulnerable to cache side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover parts of the private key.", title: "Vulnerability description", }, { category: "summary", text: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0737", }, { category: "external", summary: "RHBZ#1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0737", url: "https://www.cve.org/CVERecord?id=CVE-2018-0737", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", }, { category: "external", summary: "http://www.openwall.com/lists/oss-security/2018/04/16/3", url: "http://www.openwall.com/lists/oss-security/2018/04/16/3", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20180416.txt", url: "https://www.openssl.org/news/secadv/20180416.txt", }, ], release_date: "2018-04-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 3.3, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", }, { acknowledgments: [ { names: [ "Alejandro Cabrera Aldaya", ], organization: "Universidad Tecnologica de la Habana CUJAE; Cuba", }, { names: [ "Billy Bob Brumley", "Cesar Pereida Garcia", "Sohaib ul Hassan", ], }, { names: [ "Nicola Tuveri", ], organization: "Tampere University of Technology; Finland", }, ], cve: "CVE-2018-5407", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2018-11-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1645695", }, ], notes: [ { category: "description", text: "A microprocessor side-channel vulnerability was found on SMT (e.g, Hyper-Threading) architectures. An attacker running a malicious process on the same core of the processor as the victim process can extract certain secret information.", title: "Vulnerability description", }, { category: "summary", text: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", title: "Vulnerability summary", }, { category: "other", text: "This is a timing side-channel flaw on processors which implement SMT/Hyper-Threading architectures. It can result in leakage of secret data in applications such as OpenSSL that has secret dependent control flow at any granularity level. In order to exploit this flaw, the attacker needs to run a malicious process on the same core of the processor as the victim process.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5407", }, { category: "external", summary: "RHBZ#1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5407", url: "https://www.cve.org/CVERecord?id=CVE-2018-5407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", }, { category: "external", summary: "https://github.com/bbbrumley/portsmash", url: "https://github.com/bbbrumley/portsmash", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20181112.txt", url: "https://www.openssl.org/news/secadv/20181112.txt", }, ], release_date: "2018-10-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "At this time Red Hat Engineering is working on patches for openssl package in Red Hat Enterprise Linux 7 to address this issue. Until fixes are available, users are advised to review the guidance supplied in the L1 Terminal Fault vulnerability article: https://access.redhat.com/security/vulnerabilities/L1TF and decide what their exposure across shared CPU threads are and act accordingly.", product_ids: [ "Text-Only JBCS", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "PHYSICAL", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:P/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", }, { cve: "CVE-2018-17189", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668497", }, ], notes: [ { category: "description", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: DoS via slow, unneeded request bodies", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "RHBZ#1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17189", url: "https://www.cve.org/CVERecord?id=CVE-2018-17189", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: DoS via slow, unneeded request bodies", }, { cve: "CVE-2018-17199", cwe: { id: "CWE-613", name: "Insufficient Session Expiration", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668493", }, ], notes: [ { category: "description", text: "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_session_cookie does not respect expiry time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17199", }, { category: "external", summary: "RHBZ#1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17199", url: "https://www.cve.org/CVERecord?id=CVE-2018-17199", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_session_cookie does not respect expiry time", }, { cve: "CVE-2019-0196", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695030", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the request incorrectly.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: read-after-free on a string compare", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0196", }, { category: "external", summary: "RHBZ#1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0196", url: "https://www.cve.org/CVERecord?id=CVE-2019-0196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: read-after-free on a string compare", }, { cve: "CVE-2019-0197", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695042", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: possible crash on late upgrade", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0197", }, { category: "external", summary: "RHBZ#1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0197", url: "https://www.cve.org/CVERecord?id=CVE-2019-0197", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-02-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: possible crash on late upgrade", }, { cve: "CVE-2019-0217", cwe: { id: "CWE-284", name: "Improper Access Control", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695020", }, ], notes: [ { category: "description", text: "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_auth_digest: access control bypass due to race condition", title: "Vulnerability summary", }, { category: "other", text: "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0217", }, { category: "external", summary: "RHBZ#1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0217", url: "https://www.cve.org/CVERecord?id=CVE-2019-0217", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.", product_ids: [ "Text-Only JBCS", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_auth_digest: access control bypass due to race condition", }, { cve: "CVE-2019-9511", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741860", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker can request a large amount of data by manipulating window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this queue can consume excess CPU, memory, or both, leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: large amount of data requests leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "There are no mitigations available for nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9511", }, { category: "external", summary: "RHBZ#1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9511", url: "https://www.cve.org/CVERecord?id=CVE-2019-9511", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "Text-Only JBCS", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: large amount of data requests leads to denial of service", }, { acknowledgments: [ { names: [ "the Envoy security team", ], }, ], cve: "CVE-2019-9513", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1735741", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, using PRIORITY frames to flood the system, could cause excessive CPU usage and starvation of other clients. The largest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for packages nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9513", }, { category: "external", summary: "RHBZ#1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9513", url: "https://www.cve.org/CVERecord?id=CVE-2019-9513", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", url: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T17:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "Text-Only JBCS", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", }, { cve: "CVE-2019-9516", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741864", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, sending a stream of header with a 0-length header name and a 0-length header value, could cause some implementations to allocate memory for these headers and keep the allocations alive until the session dies. The can consume excess memory, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: 0-length headers lead to denial of service", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9516", }, { category: "external", summary: "RHBZ#1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9516", url: "https://www.cve.org/CVERecord?id=CVE-2019-9516", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://github.com/nghttp2/nghttp2/issues/1382#", url: "https://github.com/nghttp2/nghttp2/issues/1382#", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "Text-Only JBCS", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: 0-length headers lead to denial of service", }, { cve: "CVE-2019-9517", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741868", }, ], notes: [ { category: "description", text: "A vulnerability was found in HTTP/2. An attacker can open a HTTP/2 window so the peer can send without constraint. The TCP window remains closed so the peer cannot write the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the server's queue is setup, the responses can consume excess memory, CPU, or both, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: request for large response leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "The package httpd versions as shipped with Red Hat Enterprise Linux 5, 6 and 7 are not affected by this issue as HTTP/2 support is not provided.\nThis flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9517", }, { category: "external", summary: "RHBZ#1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9517", url: "https://www.cve.org/CVERecord?id=CVE-2019-9517", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "The httpd version shipped with Red Hat Enterprise Linux 8 provides HTTP/2 support through mod_http2 package. While mod_http2 package is not updated, users can disable HTTP/2 support as mitigation action by executing the following steps:\n\n1. Stop httpd service:\n$ systemctl stop httpd\n\n2. Remove http/2 protocol support from configuration files:\n$ sed -i 's/\\(h2\\)\\|\\(h2c\\)//g' <httpd_config_file>\n\n3. Validate configuration files to make sure all syntax is valid:\n$ apachectl configtest\n\n4. Restart httpd service:\n$ systemctl start httpd", product_ids: [ "Text-Only JBCS", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: request for large response leads to denial of service", }, ], }
RHSA-2019:3935
Vulnerability from csaf_redhat
Published
2019-11-20 16:08
Modified
2025-03-17 01:33
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release
Notes
Topic
Red Hat JBoss Core Services Pack Apache Server 2.4.37 zip release
for RHEL 6, RHEL 7 and Microsoft Windows is available.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience.
This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737) * openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734) * mod_auth_digest: access control bypass due to race condition (CVE-2019-0217) * openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407) * mod_session_cookie does not respect expiry time (CVE-2018-17199) * mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189) * mod_http2: possible crash on late upgrade (CVE-2019-0197) * mod_http2: read-after-free on a string compare (CVE-2019-0196) * nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511) * nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513) * mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516) * mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat JBoss Core Services Pack Apache Server 2.4.37 zip release\nfor RHEL 6, RHEL 7 and Microsoft Windows is available.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience.\n\nThis release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737) * openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734) * mod_auth_digest: access control bypass due to race condition (CVE-2019-0217) * openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407) * mod_session_cookie does not respect expiry time (CVE-2018-17199) * mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189) * mod_http2: possible crash on late upgrade (CVE-2019-0197) * mod_http2: read-after-free on a string compare (CVE-2019-0196) * nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511) * nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513) * mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516) * mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2019:3935", url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "JBCS-798", url: "https://issues.redhat.com/browse/JBCS-798", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3935.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release", tracking: { current_release_date: "2025-03-17T01:33:16+00:00", generator: { date: "2025-03-17T01:33:16+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2019:3935", initial_release_date: "2019-11-20T16:08:18+00:00", revision_history: [ { date: "2019-11-20T16:08:18+00:00", number: "1", summary: "Initial version", }, { date: "2020-01-06T13:01:52+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-17T01:33:16+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Text-Only JBCS", product: { name: "Text-Only JBCS", product_id: "Text-Only JBCS", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_core_services:1", }, }, }, ], category: "product_family", name: "Red Hat JBoss Core Services", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { cve: "CVE-2018-0734", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-10-30T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1644364", }, ], notes: [ { category: "description", text: "The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).", title: "Vulnerability description", }, { category: "summary", text: "openssl: timing side channel attack in the DSA signature algorithm", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0734", }, { category: "external", summary: "RHBZ#1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0734", url: "https://www.cve.org/CVERecord?id=CVE-2018-0734", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", }, ], release_date: "2018-10-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: timing side channel attack in the DSA signature algorithm", }, { cve: "CVE-2018-0737", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-04-17T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1568253", }, ], notes: [ { category: "description", text: "OpenSSL RSA key generation was found to be vulnerable to cache side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover parts of the private key.", title: "Vulnerability description", }, { category: "summary", text: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0737", }, { category: "external", summary: "RHBZ#1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0737", url: "https://www.cve.org/CVERecord?id=CVE-2018-0737", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", }, { category: "external", summary: "http://www.openwall.com/lists/oss-security/2018/04/16/3", url: "http://www.openwall.com/lists/oss-security/2018/04/16/3", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20180416.txt", url: "https://www.openssl.org/news/secadv/20180416.txt", }, ], release_date: "2018-04-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 3.3, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", }, { acknowledgments: [ { names: [ "Alejandro Cabrera Aldaya", ], organization: "Universidad Tecnologica de la Habana CUJAE; Cuba", }, { names: [ "Billy Bob Brumley", "Cesar Pereida Garcia", "Sohaib ul Hassan", ], }, { names: [ "Nicola Tuveri", ], organization: "Tampere University of Technology; Finland", }, ], cve: "CVE-2018-5407", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2018-11-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1645695", }, ], notes: [ { category: "description", text: "A microprocessor side-channel vulnerability was found on SMT (e.g, Hyper-Threading) architectures. An attacker running a malicious process on the same core of the processor as the victim process can extract certain secret information.", title: "Vulnerability description", }, { category: "summary", text: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", title: "Vulnerability summary", }, { category: "other", text: "This is a timing side-channel flaw on processors which implement SMT/Hyper-Threading architectures. It can result in leakage of secret data in applications such as OpenSSL that has secret dependent control flow at any granularity level. In order to exploit this flaw, the attacker needs to run a malicious process on the same core of the processor as the victim process.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5407", }, { category: "external", summary: "RHBZ#1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5407", url: "https://www.cve.org/CVERecord?id=CVE-2018-5407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", }, { category: "external", summary: "https://github.com/bbbrumley/portsmash", url: "https://github.com/bbbrumley/portsmash", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20181112.txt", url: "https://www.openssl.org/news/secadv/20181112.txt", }, ], release_date: "2018-10-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "At this time Red Hat Engineering is working on patches for openssl package in Red Hat Enterprise Linux 7 to address this issue. Until fixes are available, users are advised to review the guidance supplied in the L1 Terminal Fault vulnerability article: https://access.redhat.com/security/vulnerabilities/L1TF and decide what their exposure across shared CPU threads are and act accordingly.", product_ids: [ "Text-Only JBCS", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "PHYSICAL", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:P/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", }, { cve: "CVE-2018-17189", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668497", }, ], notes: [ { category: "description", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: DoS via slow, unneeded request bodies", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "RHBZ#1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17189", url: "https://www.cve.org/CVERecord?id=CVE-2018-17189", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: DoS via slow, unneeded request bodies", }, { cve: "CVE-2018-17199", cwe: { id: "CWE-613", name: "Insufficient Session Expiration", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668493", }, ], notes: [ { category: "description", text: "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_session_cookie does not respect expiry time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17199", }, { category: "external", summary: "RHBZ#1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17199", url: "https://www.cve.org/CVERecord?id=CVE-2018-17199", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_session_cookie does not respect expiry time", }, { cve: "CVE-2019-0196", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695030", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the request incorrectly.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: read-after-free on a string compare", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0196", }, { category: "external", summary: "RHBZ#1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0196", url: "https://www.cve.org/CVERecord?id=CVE-2019-0196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: read-after-free on a string compare", }, { cve: "CVE-2019-0197", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695042", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: possible crash on late upgrade", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0197", }, { category: "external", summary: "RHBZ#1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0197", url: "https://www.cve.org/CVERecord?id=CVE-2019-0197", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-02-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: possible crash on late upgrade", }, { cve: "CVE-2019-0217", cwe: { id: "CWE-284", name: "Improper Access Control", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695020", }, ], notes: [ { category: "description", text: "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_auth_digest: access control bypass due to race condition", title: "Vulnerability summary", }, { category: "other", text: "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0217", }, { category: "external", summary: "RHBZ#1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0217", url: "https://www.cve.org/CVERecord?id=CVE-2019-0217", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.", product_ids: [ "Text-Only JBCS", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_auth_digest: access control bypass due to race condition", }, { cve: "CVE-2019-9511", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741860", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker can request a large amount of data by manipulating window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this queue can consume excess CPU, memory, or both, leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: large amount of data requests leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "There are no mitigations available for nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9511", }, { category: "external", summary: "RHBZ#1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9511", url: "https://www.cve.org/CVERecord?id=CVE-2019-9511", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "Text-Only JBCS", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: large amount of data requests leads to denial of service", }, { acknowledgments: [ { names: [ "the Envoy security team", ], }, ], cve: "CVE-2019-9513", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1735741", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, using PRIORITY frames to flood the system, could cause excessive CPU usage and starvation of other clients. The largest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for packages nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9513", }, { category: "external", summary: "RHBZ#1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9513", url: "https://www.cve.org/CVERecord?id=CVE-2019-9513", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", url: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T17:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "Text-Only JBCS", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", }, { cve: "CVE-2019-9516", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741864", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, sending a stream of header with a 0-length header name and a 0-length header value, could cause some implementations to allocate memory for these headers and keep the allocations alive until the session dies. The can consume excess memory, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: 0-length headers lead to denial of service", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9516", }, { category: "external", summary: "RHBZ#1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9516", url: "https://www.cve.org/CVERecord?id=CVE-2019-9516", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://github.com/nghttp2/nghttp2/issues/1382#", url: "https://github.com/nghttp2/nghttp2/issues/1382#", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "Text-Only JBCS", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: 0-length headers lead to denial of service", }, { cve: "CVE-2019-9517", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741868", }, ], notes: [ { category: "description", text: "A vulnerability was found in HTTP/2. An attacker can open a HTTP/2 window so the peer can send without constraint. The TCP window remains closed so the peer cannot write the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the server's queue is setup, the responses can consume excess memory, CPU, or both, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: request for large response leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "The package httpd versions as shipped with Red Hat Enterprise Linux 5, 6 and 7 are not affected by this issue as HTTP/2 support is not provided.\nThis flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Text-Only JBCS", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9517", }, { category: "external", summary: "RHBZ#1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9517", url: "https://www.cve.org/CVERecord?id=CVE-2019-9517", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Text-Only JBCS", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "The httpd version shipped with Red Hat Enterprise Linux 8 provides HTTP/2 support through mod_http2 package. While mod_http2 package is not updated, users can disable HTTP/2 support as mitigation action by executing the following steps:\n\n1. Stop httpd service:\n$ systemctl stop httpd\n\n2. Remove http/2 protocol support from configuration files:\n$ sed -i 's/\\(h2\\)\\|\\(h2c\\)//g' <httpd_config_file>\n\n3. Validate configuration files to make sure all syntax is valid:\n$ apachectl configtest\n\n4. Restart httpd service:\n$ systemctl start httpd", product_ids: [ "Text-Only JBCS", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Text-Only JBCS", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: request for large response leads to denial of service", }, ], }
rhsa-2019_3932
Vulnerability from csaf_redhat
Published
2019-11-20 16:22
Modified
2025-01-05 19:06
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release on RHEL 6
Notes
Topic
Updated packages that provide Red Hat JBoss Core Services Pack Apache Server 2.4.37 and fix several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737) * openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734) * mod_auth_digest: access control bypass due to race condition (CVE-2019-0217) * openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407) * mod_session_cookie does not respect expiry time (CVE-2018-17199) * mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189) * mod_http2: possible crash on late upgrade (CVE-2019-0197) * mod_http2: read-after-free on a string compare (CVE-2019-0196) * nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511) * nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513) * mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516) * mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Updated packages that provide Red Hat JBoss Core Services Pack Apache Server 2.4.37 and fix several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737) * openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734) * mod_auth_digest: access control bypass due to race condition (CVE-2019-0217) * openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407) * mod_session_cookie does not respect expiry time (CVE-2018-17199) * mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189) * mod_http2: possible crash on late upgrade (CVE-2019-0197) * mod_http2: read-after-free on a string compare (CVE-2019-0196) * nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511) * nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513) * mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516) * mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2019:3932", url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "JBCS-798", url: "https://issues.redhat.com/browse/JBCS-798", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3932.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release on RHEL 6", tracking: { current_release_date: "2025-01-05T19:06:29+00:00", generator: { date: "2025-01-05T19:06:29+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.5", }, }, id: "RHSA-2019:3932", initial_release_date: "2019-11-20T16:22:09+00:00", revision_history: [ { date: "2019-11-20T16:22:09+00:00", number: "1", summary: "Initial version", }, { date: "2020-01-06T13:05:52+00:00", number: "2", summary: "Last updated version", }, { date: "2025-01-05T19:06:29+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Core Services on RHEL 6 Server", product: { name: "Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_core_services:1::el6", }, }, }, ], category: "product_family", name: "Red Hat JBoss Core Services", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", product: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", product_id: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", product: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", product_id: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-devel@2.11-20.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", product: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", product_id: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-debuginfo@2.11-20.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-63.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-63.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", product: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", product_id: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", product: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", product_id: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-devel@1.0.6-7.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", product: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", product_id: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-debuginfo@1.0.6-7.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", product: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", product_id: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", product: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", product_id: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.39.2-4.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", product: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", product_id: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.39.2-4.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", product: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", product_id: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", product: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", product_id: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl@7.64.1-14.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", product: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", product_id: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl-devel@7.64.1-14.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", product: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", product_id: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl-debuginfo@7.64.1-14.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_md@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.37-33.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.37-33.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.12-9.Final_redhat_2.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.46-22.redhat_1.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.46-22.redhat_1.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.46-22.redhat_1.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.2-16.GA.jbcs.el6?arch=i686", }, }, }, ], category: "architecture", name: "i686", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", product_id: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", product_id: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-devel@2.11-20.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", product_id: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-debuginfo@2.11-20.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-63.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-63.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", product_id: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", product_id: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-devel@1.0.6-7.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", product_id: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-debuginfo@1.0.6-7.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", product_id: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", product_id: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.39.2-4.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", product_id: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.39.2-4.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", product_id: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", product_id: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl@7.64.1-14.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", product_id: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl-devel@7.64.1-14.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", product_id: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl-debuginfo@7.64.1-14.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_md@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.37-33.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.37-33.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.12-9.Final_redhat_2.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.46-22.redhat_1.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.46-22.redhat_1.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.46-22.redhat_1.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.2-16.GA.jbcs.el6?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", product: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", product_id: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", product: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", product_id: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", product: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", product_id: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el6?arch=src&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", product: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", product_id: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", product: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", product_id: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", product: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", product_id: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", product: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", product_id: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", product: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", product_id: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", product: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", product_id: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", product: { name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", product_id: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.46-22.redhat_1.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", product: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", product_id: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el6?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", product: { name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", product_id: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-manual@2.4.37-33.jbcs.el6?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", }, product_reference: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", }, product_reference: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", }, product_reference: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", }, product_reference: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", }, product_reference: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", }, product_reference: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", }, product_reference: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", }, product_reference: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", }, product_reference: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", }, product_reference: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", }, product_reference: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", }, product_reference: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, ], }, vulnerabilities: [ { cve: "CVE-2018-0734", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-10-30T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1644364", }, ], notes: [ { category: "description", text: "The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).", title: "Vulnerability description", }, { category: "summary", text: "openssl: timing side channel attack in the DSA signature algorithm", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0734", }, { category: "external", summary: "RHBZ#1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0734", url: "https://www.cve.org/CVERecord?id=CVE-2018-0734", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", }, ], release_date: "2018-10-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: timing side channel attack in the DSA signature algorithm", }, { cve: "CVE-2018-0737", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-04-17T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1568253", }, ], notes: [ { category: "description", text: "OpenSSL RSA key generation was found to be vulnerable to cache side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover parts of the private key.", title: "Vulnerability description", }, { category: "summary", text: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0737", }, { category: "external", summary: "RHBZ#1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0737", url: "https://www.cve.org/CVERecord?id=CVE-2018-0737", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", }, { category: "external", summary: "http://www.openwall.com/lists/oss-security/2018/04/16/3", url: "http://www.openwall.com/lists/oss-security/2018/04/16/3", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20180416.txt", url: "https://www.openssl.org/news/secadv/20180416.txt", }, ], release_date: "2018-04-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 3.3, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", }, { acknowledgments: [ { names: [ "Alejandro Cabrera Aldaya", ], organization: "Universidad Tecnologica de la Habana CUJAE; Cuba", }, { names: [ "Billy Bob Brumley", "Cesar Pereida Garcia", "Sohaib ul Hassan", ], }, { names: [ "Nicola Tuveri", ], organization: "Tampere University of Technology; Finland", }, ], cve: "CVE-2018-5407", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2018-11-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1645695", }, ], notes: [ { category: "description", text: "A microprocessor side-channel vulnerability was found on SMT (e.g, Hyper-Threading) architectures. An attacker running a malicious process on the same core of the processor as the victim process can extract certain secret information.", title: "Vulnerability description", }, { category: "summary", text: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", title: "Vulnerability summary", }, { category: "other", text: "This is a timing side-channel flaw on processors which implement SMT/Hyper-Threading architectures. It can result in leakage of secret data in applications such as OpenSSL that has secret dependent control flow at any granularity level. In order to exploit this flaw, the attacker needs to run a malicious process on the same core of the processor as the victim process.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5407", }, { category: "external", summary: "RHBZ#1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5407", url: "https://www.cve.org/CVERecord?id=CVE-2018-5407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", }, { category: "external", summary: "https://github.com/bbbrumley/portsmash", url: "https://github.com/bbbrumley/portsmash", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20181112.txt", url: "https://www.openssl.org/news/secadv/20181112.txt", }, ], release_date: "2018-10-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "At this time Red Hat Engineering is working on patches for openssl package in Red Hat Enterprise Linux 7 to address this issue. Until fixes are available, users are advised to review the guidance supplied in the L1 Terminal Fault vulnerability article: https://access.redhat.com/security/vulnerabilities/L1TF and decide what their exposure across shared CPU threads are and act accordingly.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "PHYSICAL", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:P/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", }, { cve: "CVE-2018-17189", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668497", }, ], notes: [ { category: "description", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: DoS via slow, unneeded request bodies", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "RHBZ#1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17189", url: "https://www.cve.org/CVERecord?id=CVE-2018-17189", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: DoS via slow, unneeded request bodies", }, { cve: "CVE-2018-17199", cwe: { id: "CWE-613", name: "Insufficient Session Expiration", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668493", }, ], notes: [ { category: "description", text: "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_session_cookie does not respect expiry time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17199", }, { category: "external", summary: "RHBZ#1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17199", url: "https://www.cve.org/CVERecord?id=CVE-2018-17199", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_session_cookie does not respect expiry time", }, { cve: "CVE-2019-0196", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695030", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the request incorrectly.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: read-after-free on a string compare", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0196", }, { category: "external", summary: "RHBZ#1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0196", url: "https://www.cve.org/CVERecord?id=CVE-2019-0196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: read-after-free on a string compare", }, { cve: "CVE-2019-0197", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695042", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: possible crash on late upgrade", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0197", }, { category: "external", summary: "RHBZ#1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0197", url: "https://www.cve.org/CVERecord?id=CVE-2019-0197", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-02-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: possible crash on late upgrade", }, { cve: "CVE-2019-0217", cwe: { id: "CWE-284", name: "Improper Access Control", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695020", }, ], notes: [ { category: "description", text: "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_auth_digest: access control bypass due to race condition", title: "Vulnerability summary", }, { category: "other", text: "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0217", }, { category: "external", summary: "RHBZ#1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0217", url: "https://www.cve.org/CVERecord?id=CVE-2019-0217", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_auth_digest: access control bypass due to race condition", }, { cve: "CVE-2019-9511", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741860", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker can request a large amount of data by manipulating window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this queue can consume excess CPU, memory, or both, leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: large amount of data requests leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "There are no mitigations available for nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9511", }, { category: "external", summary: "RHBZ#1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9511", url: "https://www.cve.org/CVERecord?id=CVE-2019-9511", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: large amount of data requests leads to denial of service", }, { acknowledgments: [ { names: [ "the Envoy security team", ], }, ], cve: "CVE-2019-9513", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1735741", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, using PRIORITY frames to flood the system, could cause excessive CPU usage and starvation of other clients. The largest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for packages nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9513", }, { category: "external", summary: "RHBZ#1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9513", url: "https://www.cve.org/CVERecord?id=CVE-2019-9513", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", url: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T17:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", }, { cve: "CVE-2019-9516", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741864", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, sending a stream of header with a 0-length header name and a 0-length header value, could cause some implementations to allocate memory for these headers and keep the allocations alive until the session dies. The can consume excess memory, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: 0-length headers lead to denial of service", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9516", }, { category: "external", summary: "RHBZ#1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9516", url: "https://www.cve.org/CVERecord?id=CVE-2019-9516", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://github.com/nghttp2/nghttp2/issues/1382#", url: "https://github.com/nghttp2/nghttp2/issues/1382#", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: 0-length headers lead to denial of service", }, { cve: "CVE-2019-9517", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741868", }, ], notes: [ { category: "description", text: "A vulnerability was found in HTTP/2. An attacker can open a HTTP/2 window so the peer can send without constraint. The TCP window remains closed so the peer cannot write the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the server's queue is setup, the responses can consume excess memory, CPU, or both, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: request for large response leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "The package httpd versions as shipped with Red Hat Enterprise Linux 5, 6 and 7 are not affected by this issue as HTTP/2 support is not provided.\nThis flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9517", }, { category: "external", summary: "RHBZ#1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9517", url: "https://www.cve.org/CVERecord?id=CVE-2019-9517", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "The httpd version shipped with Red Hat Enterprise Linux 8 provides HTTP/2 support through mod_http2 package. While mod_http2 package is not updated, users can disable HTTP/2 support as mitigation action by executing the following steps:\n\n1. Stop httpd service:\n$ systemctl stop httpd\n\n2. Remove http/2 protocol support from configuration files:\n$ sed -i 's/\\(h2\\)\\|\\(h2c\\)//g' <httpd_config_file>\n\n3. Validate configuration files to make sure all syntax is valid:\n$ apachectl configtest\n\n4. Restart httpd service:\n$ systemctl start httpd", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: request for large response leads to denial of service", }, ], }
rhsa-2019:3933
Vulnerability from csaf_redhat
Published
2019-11-20 16:14
Modified
2025-03-17 01:33
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release on RHEL 7
Notes
Topic
An update is now available for JBoss Core Services on RHEL 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737)
* openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734)
* mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)
* openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407)
* mod_session_cookie does not respect expiry time (CVE-2018-17199)
* mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)
* mod_http2: possible crash on late upgrade (CVE-2019-0197)
* mod_http2: read-after-free on a string compare (CVE-2019-0196)
* nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511)
* nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513)
* mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516)
* mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for JBoss Core Services on RHEL 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737)\n* openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734)\n* mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)\n* openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407)\n* mod_session_cookie does not respect expiry time (CVE-2018-17199)\n* mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)\n* mod_http2: possible crash on late upgrade (CVE-2019-0197)\n* mod_http2: read-after-free on a string compare (CVE-2019-0196)\n* nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511)\n* nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513)\n* mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516)\n* mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2019:3933", url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "JBCS-798", url: "https://issues.redhat.com/browse/JBCS-798", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3933.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release on RHEL 7", tracking: { current_release_date: "2025-03-17T01:33:23+00:00", generator: { date: "2025-03-17T01:33:23+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2019:3933", initial_release_date: "2019-11-20T16:14:21+00:00", revision_history: [ { date: "2019-11-20T16:14:21+00:00", number: "1", summary: "Initial version", }, { date: "2020-01-06T13:04:40+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-17T01:33:23+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Core Services on RHEL 7 Server", product: { name: "Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_core_services:1::el7", }, }, }, ], category: "product_family", name: "Red Hat JBoss Core Services", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", product_id: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", product_id: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-devel@2.11-20.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", product_id: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-debuginfo@2.11-20.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-63.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-63.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", product_id: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", product_id: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-devel@1.0.6-7.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", product_id: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-debuginfo@1.0.6-7.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", product_id: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", product_id: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.39.2-4.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", product_id: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.39.2-4.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", product_id: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", product_id: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl@7.64.1-14.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", product_id: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl-devel@7.64.1-14.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", product_id: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl-debuginfo@7.64.1-14.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_md@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.37-33.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.37-33.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.46-22.redhat_1.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.46-22.redhat_1.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.46-22.redhat_1.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.12-9.Final_redhat_2.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.2-16.GA.jbcs.el7?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", product: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", product_id: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", product: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", product_id: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", product: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", product_id: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el7?arch=src&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", product: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", product_id: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", product: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", product_id: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", product: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", product_id: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", product: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", product_id: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", product: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", product_id: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", product: { name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", product_id: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.46-22.redhat_1.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", product: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", product_id: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", product: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", product_id: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el7?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", product: { name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", product_id: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-manual@2.4.37-33.jbcs.el7?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", }, product_reference: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", }, product_reference: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", }, product_reference: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", }, product_reference: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", }, product_reference: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", }, product_reference: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", }, product_reference: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", }, product_reference: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", }, product_reference: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", }, product_reference: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", }, product_reference: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", }, product_reference: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, ], }, vulnerabilities: [ { cve: "CVE-2018-0734", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-10-30T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1644364", }, ], notes: [ { category: "description", text: "The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).", title: "Vulnerability description", }, { category: "summary", text: "openssl: timing side channel attack in the DSA signature algorithm", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0734", }, { category: "external", summary: "RHBZ#1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0734", url: "https://www.cve.org/CVERecord?id=CVE-2018-0734", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", }, ], release_date: "2018-10-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: timing side channel attack in the DSA signature algorithm", }, { cve: "CVE-2018-0737", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-04-17T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1568253", }, ], notes: [ { category: "description", text: "OpenSSL RSA key generation was found to be vulnerable to cache side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover parts of the private key.", title: "Vulnerability description", }, { category: "summary", text: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0737", }, { category: "external", summary: "RHBZ#1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0737", url: "https://www.cve.org/CVERecord?id=CVE-2018-0737", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", }, { category: "external", summary: "http://www.openwall.com/lists/oss-security/2018/04/16/3", url: "http://www.openwall.com/lists/oss-security/2018/04/16/3", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20180416.txt", url: "https://www.openssl.org/news/secadv/20180416.txt", }, ], release_date: "2018-04-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 3.3, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", }, { acknowledgments: [ { names: [ "Alejandro Cabrera Aldaya", ], organization: "Universidad Tecnologica de la Habana CUJAE; Cuba", }, { names: [ "Billy Bob Brumley", "Cesar Pereida Garcia", "Sohaib ul Hassan", ], }, { names: [ "Nicola Tuveri", ], organization: "Tampere University of Technology; Finland", }, ], cve: "CVE-2018-5407", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2018-11-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1645695", }, ], notes: [ { category: "description", text: "A microprocessor side-channel vulnerability was found on SMT (e.g, Hyper-Threading) architectures. An attacker running a malicious process on the same core of the processor as the victim process can extract certain secret information.", title: "Vulnerability description", }, { category: "summary", text: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", title: "Vulnerability summary", }, { category: "other", text: "This is a timing side-channel flaw on processors which implement SMT/Hyper-Threading architectures. It can result in leakage of secret data in applications such as OpenSSL that has secret dependent control flow at any granularity level. In order to exploit this flaw, the attacker needs to run a malicious process on the same core of the processor as the victim process.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5407", }, { category: "external", summary: "RHBZ#1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5407", url: "https://www.cve.org/CVERecord?id=CVE-2018-5407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", }, { category: "external", summary: "https://github.com/bbbrumley/portsmash", url: "https://github.com/bbbrumley/portsmash", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20181112.txt", url: "https://www.openssl.org/news/secadv/20181112.txt", }, ], release_date: "2018-10-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "At this time Red Hat Engineering is working on patches for openssl package in Red Hat Enterprise Linux 7 to address this issue. Until fixes are available, users are advised to review the guidance supplied in the L1 Terminal Fault vulnerability article: https://access.redhat.com/security/vulnerabilities/L1TF and decide what their exposure across shared CPU threads are and act accordingly.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "PHYSICAL", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:P/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", }, { cve: "CVE-2018-17189", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668497", }, ], notes: [ { category: "description", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: DoS via slow, unneeded request bodies", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "RHBZ#1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17189", url: "https://www.cve.org/CVERecord?id=CVE-2018-17189", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: DoS via slow, unneeded request bodies", }, { cve: "CVE-2018-17199", cwe: { id: "CWE-613", name: "Insufficient Session Expiration", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668493", }, ], notes: [ { category: "description", text: "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_session_cookie does not respect expiry time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17199", }, { category: "external", summary: "RHBZ#1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17199", url: "https://www.cve.org/CVERecord?id=CVE-2018-17199", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_session_cookie does not respect expiry time", }, { cve: "CVE-2019-0196", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695030", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the request incorrectly.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: read-after-free on a string compare", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0196", }, { category: "external", summary: "RHBZ#1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0196", url: "https://www.cve.org/CVERecord?id=CVE-2019-0196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: read-after-free on a string compare", }, { cve: "CVE-2019-0197", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695042", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: possible crash on late upgrade", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0197", }, { category: "external", summary: "RHBZ#1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0197", url: "https://www.cve.org/CVERecord?id=CVE-2019-0197", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-02-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: possible crash on late upgrade", }, { cve: "CVE-2019-0217", cwe: { id: "CWE-284", name: "Improper Access Control", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695020", }, ], notes: [ { category: "description", text: "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_auth_digest: access control bypass due to race condition", title: "Vulnerability summary", }, { category: "other", text: "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0217", }, { category: "external", summary: "RHBZ#1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0217", url: "https://www.cve.org/CVERecord?id=CVE-2019-0217", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_auth_digest: access control bypass due to race condition", }, { cve: "CVE-2019-9511", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741860", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker can request a large amount of data by manipulating window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this queue can consume excess CPU, memory, or both, leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: large amount of data requests leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "There are no mitigations available for nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9511", }, { category: "external", summary: "RHBZ#1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9511", url: "https://www.cve.org/CVERecord?id=CVE-2019-9511", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: large amount of data requests leads to denial of service", }, { acknowledgments: [ { names: [ "the Envoy security team", ], }, ], cve: "CVE-2019-9513", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1735741", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, using PRIORITY frames to flood the system, could cause excessive CPU usage and starvation of other clients. The largest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for packages nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9513", }, { category: "external", summary: "RHBZ#1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9513", url: "https://www.cve.org/CVERecord?id=CVE-2019-9513", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", url: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T17:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", }, { cve: "CVE-2019-9516", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741864", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, sending a stream of header with a 0-length header name and a 0-length header value, could cause some implementations to allocate memory for these headers and keep the allocations alive until the session dies. The can consume excess memory, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: 0-length headers lead to denial of service", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9516", }, { category: "external", summary: "RHBZ#1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9516", url: "https://www.cve.org/CVERecord?id=CVE-2019-9516", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://github.com/nghttp2/nghttp2/issues/1382#", url: "https://github.com/nghttp2/nghttp2/issues/1382#", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: 0-length headers lead to denial of service", }, { cve: "CVE-2019-9517", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741868", }, ], notes: [ { category: "description", text: "A vulnerability was found in HTTP/2. An attacker can open a HTTP/2 window so the peer can send without constraint. The TCP window remains closed so the peer cannot write the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the server's queue is setup, the responses can consume excess memory, CPU, or both, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: request for large response leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "The package httpd versions as shipped with Red Hat Enterprise Linux 5, 6 and 7 are not affected by this issue as HTTP/2 support is not provided.\nThis flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9517", }, { category: "external", summary: "RHBZ#1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9517", url: "https://www.cve.org/CVERecord?id=CVE-2019-9517", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "The httpd version shipped with Red Hat Enterprise Linux 8 provides HTTP/2 support through mod_http2 package. While mod_http2 package is not updated, users can disable HTTP/2 support as mitigation action by executing the following steps:\n\n1. Stop httpd service:\n$ systemctl stop httpd\n\n2. Remove http/2 protocol support from configuration files:\n$ sed -i 's/\\(h2\\)\\|\\(h2c\\)//g' <httpd_config_file>\n\n3. Validate configuration files to make sure all syntax is valid:\n$ apachectl configtest\n\n4. Restart httpd service:\n$ systemctl start httpd", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: request for large response leads to denial of service", }, ], }
RHSA-2019:3932
Vulnerability from csaf_redhat
Published
2019-11-20 16:22
Modified
2025-03-17 01:33
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release on RHEL 6
Notes
Topic
Updated packages that provide Red Hat JBoss Core Services Pack Apache Server 2.4.37 and fix several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737) * openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734) * mod_auth_digest: access control bypass due to race condition (CVE-2019-0217) * openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407) * mod_session_cookie does not respect expiry time (CVE-2018-17199) * mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189) * mod_http2: possible crash on late upgrade (CVE-2019-0197) * mod_http2: read-after-free on a string compare (CVE-2019-0196) * nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511) * nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513) * mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516) * mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Updated packages that provide Red Hat JBoss Core Services Pack Apache Server 2.4.37 and fix several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737) * openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734) * mod_auth_digest: access control bypass due to race condition (CVE-2019-0217) * openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407) * mod_session_cookie does not respect expiry time (CVE-2018-17199) * mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189) * mod_http2: possible crash on late upgrade (CVE-2019-0197) * mod_http2: read-after-free on a string compare (CVE-2019-0196) * nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511) * nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513) * mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516) * mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2019:3932", url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "JBCS-798", url: "https://issues.redhat.com/browse/JBCS-798", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3932.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release on RHEL 6", tracking: { current_release_date: "2025-03-17T01:33:29+00:00", generator: { date: "2025-03-17T01:33:29+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2019:3932", initial_release_date: "2019-11-20T16:22:09+00:00", revision_history: [ { date: "2019-11-20T16:22:09+00:00", number: "1", summary: "Initial version", }, { date: "2020-01-06T13:05:52+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-17T01:33:29+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Core Services on RHEL 6 Server", product: { name: "Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_core_services:1::el6", }, }, }, ], category: "product_family", name: "Red Hat JBoss Core Services", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", product: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", product_id: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", product: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", product_id: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-devel@2.11-20.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", product: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", product_id: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-debuginfo@2.11-20.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-63.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-63.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", product: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", product_id: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.1.1-25.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", product: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", product_id: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-48.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", product: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", product_id: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", product: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", product_id: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-devel@1.0.6-7.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", product: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", product_id: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-debuginfo@1.0.6-7.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", product: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", product_id: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", product: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", product_id: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.39.2-4.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", product: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", product_id: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.39.2-4.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", product: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", product_id: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", product: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", product_id: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl@7.64.1-14.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", product: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", product_id: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl-devel@7.64.1-14.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", product: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", product_id: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl-debuginfo@7.64.1-14.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_md@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.37-33.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.37-33.jbcs.el6?arch=i686&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", product: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", product_id: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.37-33.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.12-9.Final_redhat_2.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.46-22.redhat_1.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.46-22.redhat_1.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.46-22.redhat_1.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el6?arch=i686", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", product: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", product_id: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.2-16.GA.jbcs.el6?arch=i686", }, }, }, ], category: "architecture", name: "i686", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", product_id: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", product_id: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-devel@2.11-20.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", product_id: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-debuginfo@2.11-20.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-63.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-63.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", product_id: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.1.1-25.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", product_id: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-48.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", product_id: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", product_id: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-devel@1.0.6-7.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", product_id: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-debuginfo@1.0.6-7.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", product_id: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", product_id: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.39.2-4.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", product_id: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.39.2-4.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", product_id: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", product_id: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl@7.64.1-14.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", product_id: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl-devel@7.64.1-14.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", product_id: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl-debuginfo@7.64.1-14.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_md@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.37-33.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.37-33.jbcs.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", product_id: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.37-33.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.12-9.Final_redhat_2.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.46-22.redhat_1.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.46-22.redhat_1.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.46-22.redhat_1.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el6?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", product: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", product_id: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.2-16.GA.jbcs.el6?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", product: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", product_id: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", product: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", product_id: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", product: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", product_id: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el6?arch=src&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", product: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", product_id: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", product: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", product_id: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", product: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", product_id: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", product: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", product_id: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", product: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", product_id: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", product: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", product_id: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", product: { name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", product_id: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.46-22.redhat_1.jbcs.el6?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", product: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", product_id: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el6?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", product: { name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", product_id: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-manual@2.4.37-33.jbcs.el6?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", }, product_reference: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", }, product_reference: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", }, product_reference: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", }, product_reference: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", }, product_reference: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", }, product_reference: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", }, product_reference: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", }, product_reference: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", }, product_reference: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", }, product_reference: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", }, product_reference: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", }, product_reference: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", }, product_reference: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", relates_to_product_reference: "6Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server", product_id: "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", }, product_reference: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", relates_to_product_reference: "6Server-JBCS", }, ], }, vulnerabilities: [ { cve: "CVE-2018-0734", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-10-30T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1644364", }, ], notes: [ { category: "description", text: "The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).", title: "Vulnerability description", }, { category: "summary", text: "openssl: timing side channel attack in the DSA signature algorithm", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0734", }, { category: "external", summary: "RHBZ#1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0734", url: "https://www.cve.org/CVERecord?id=CVE-2018-0734", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", }, ], release_date: "2018-10-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: timing side channel attack in the DSA signature algorithm", }, { cve: "CVE-2018-0737", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-04-17T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1568253", }, ], notes: [ { category: "description", text: "OpenSSL RSA key generation was found to be vulnerable to cache side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover parts of the private key.", title: "Vulnerability description", }, { category: "summary", text: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0737", }, { category: "external", summary: "RHBZ#1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0737", url: "https://www.cve.org/CVERecord?id=CVE-2018-0737", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", }, { category: "external", summary: "http://www.openwall.com/lists/oss-security/2018/04/16/3", url: "http://www.openwall.com/lists/oss-security/2018/04/16/3", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20180416.txt", url: "https://www.openssl.org/news/secadv/20180416.txt", }, ], release_date: "2018-04-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 3.3, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", }, { acknowledgments: [ { names: [ "Alejandro Cabrera Aldaya", ], organization: "Universidad Tecnologica de la Habana CUJAE; Cuba", }, { names: [ "Billy Bob Brumley", "Cesar Pereida Garcia", "Sohaib ul Hassan", ], }, { names: [ "Nicola Tuveri", ], organization: "Tampere University of Technology; Finland", }, ], cve: "CVE-2018-5407", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2018-11-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1645695", }, ], notes: [ { category: "description", text: "A microprocessor side-channel vulnerability was found on SMT (e.g, Hyper-Threading) architectures. An attacker running a malicious process on the same core of the processor as the victim process can extract certain secret information.", title: "Vulnerability description", }, { category: "summary", text: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", title: "Vulnerability summary", }, { category: "other", text: "This is a timing side-channel flaw on processors which implement SMT/Hyper-Threading architectures. It can result in leakage of secret data in applications such as OpenSSL that has secret dependent control flow at any granularity level. In order to exploit this flaw, the attacker needs to run a malicious process on the same core of the processor as the victim process.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5407", }, { category: "external", summary: "RHBZ#1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5407", url: "https://www.cve.org/CVERecord?id=CVE-2018-5407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", }, { category: "external", summary: "https://github.com/bbbrumley/portsmash", url: "https://github.com/bbbrumley/portsmash", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20181112.txt", url: "https://www.openssl.org/news/secadv/20181112.txt", }, ], release_date: "2018-10-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "At this time Red Hat Engineering is working on patches for openssl package in Red Hat Enterprise Linux 7 to address this issue. Until fixes are available, users are advised to review the guidance supplied in the L1 Terminal Fault vulnerability article: https://access.redhat.com/security/vulnerabilities/L1TF and decide what their exposure across shared CPU threads are and act accordingly.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "PHYSICAL", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:P/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", }, { cve: "CVE-2018-17189", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668497", }, ], notes: [ { category: "description", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: DoS via slow, unneeded request bodies", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "RHBZ#1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17189", url: "https://www.cve.org/CVERecord?id=CVE-2018-17189", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: DoS via slow, unneeded request bodies", }, { cve: "CVE-2018-17199", cwe: { id: "CWE-613", name: "Insufficient Session Expiration", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668493", }, ], notes: [ { category: "description", text: "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_session_cookie does not respect expiry time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17199", }, { category: "external", summary: "RHBZ#1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17199", url: "https://www.cve.org/CVERecord?id=CVE-2018-17199", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_session_cookie does not respect expiry time", }, { cve: "CVE-2019-0196", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695030", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the request incorrectly.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: read-after-free on a string compare", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0196", }, { category: "external", summary: "RHBZ#1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0196", url: "https://www.cve.org/CVERecord?id=CVE-2019-0196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: read-after-free on a string compare", }, { cve: "CVE-2019-0197", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695042", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: possible crash on late upgrade", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0197", }, { category: "external", summary: "RHBZ#1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0197", url: "https://www.cve.org/CVERecord?id=CVE-2019-0197", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-02-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: possible crash on late upgrade", }, { cve: "CVE-2019-0217", cwe: { id: "CWE-284", name: "Improper Access Control", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695020", }, ], notes: [ { category: "description", text: "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_auth_digest: access control bypass due to race condition", title: "Vulnerability summary", }, { category: "other", text: "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0217", }, { category: "external", summary: "RHBZ#1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0217", url: "https://www.cve.org/CVERecord?id=CVE-2019-0217", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_auth_digest: access control bypass due to race condition", }, { cve: "CVE-2019-9511", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741860", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker can request a large amount of data by manipulating window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this queue can consume excess CPU, memory, or both, leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: large amount of data requests leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "There are no mitigations available for nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9511", }, { category: "external", summary: "RHBZ#1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9511", url: "https://www.cve.org/CVERecord?id=CVE-2019-9511", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: large amount of data requests leads to denial of service", }, { acknowledgments: [ { names: [ "the Envoy security team", ], }, ], cve: "CVE-2019-9513", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1735741", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, using PRIORITY frames to flood the system, could cause excessive CPU usage and starvation of other clients. The largest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for packages nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9513", }, { category: "external", summary: "RHBZ#1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9513", url: "https://www.cve.org/CVERecord?id=CVE-2019-9513", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", url: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T17:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", }, { cve: "CVE-2019-9516", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741864", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, sending a stream of header with a 0-length header name and a 0-length header value, could cause some implementations to allocate memory for these headers and keep the allocations alive until the session dies. The can consume excess memory, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: 0-length headers lead to denial of service", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9516", }, { category: "external", summary: "RHBZ#1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9516", url: "https://www.cve.org/CVERecord?id=CVE-2019-9516", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://github.com/nghttp2/nghttp2/issues/1382#", url: "https://github.com/nghttp2/nghttp2/issues/1382#", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: 0-length headers lead to denial of service", }, { cve: "CVE-2019-9517", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741868", }, ], notes: [ { category: "description", text: "A vulnerability was found in HTTP/2. An attacker can open a HTTP/2 window so the peer can send without constraint. The TCP window remains closed so the peer cannot write the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the server's queue is setup, the responses can consume excess memory, CPU, or both, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: request for large response leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "The package httpd versions as shipped with Red Hat Enterprise Linux 5, 6 and 7 are not affected by this issue as HTTP/2 support is not provided.\nThis flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9517", }, { category: "external", summary: "RHBZ#1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9517", url: "https://www.cve.org/CVERecord?id=CVE-2019-9517", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:22:09+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { category: "workaround", details: "The httpd version shipped with Red Hat Enterprise Linux 8 provides HTTP/2 support through mod_http2 package. While mod_http2 package is not updated, users can disable HTTP/2 support as mitigation action by executing the following steps:\n\n1. Stop httpd service:\n$ systemctl stop httpd\n\n2. Remove http/2 protocol support from configuration files:\n$ sed -i 's/\\(h2\\)\\|\\(h2c\\)//g' <httpd_config_file>\n\n3. Validate configuration files to make sure all syntax is valid:\n$ apachectl configtest\n\n4. Restart httpd service:\n$ systemctl start httpd", product_ids: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6.noarch", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.src", "6Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6.x86_64", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.i686", "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: request for large response leads to denial of service", }, ], }
rhsa-2019_3935
Vulnerability from csaf_redhat
Published
2019-11-20 16:08
Modified
2025-01-05 19:06
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release
Notes
Topic
Red Hat JBoss Core Services Pack Apache Server 2.4.37 zip release
for RHEL 6, RHEL 7 and Microsoft Windows is available.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience.
This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737) * openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734) * mod_auth_digest: access control bypass due to race condition (CVE-2019-0217) * openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407) * mod_session_cookie does not respect expiry time (CVE-2018-17199) * mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189) * mod_http2: possible crash on late upgrade (CVE-2019-0197) * mod_http2: read-after-free on a string compare (CVE-2019-0196) * nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511) * nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513) * mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516) * mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat JBoss Core Services Pack Apache Server 2.4.37 zip release\nfor RHEL 6, RHEL 7 and Microsoft Windows is available.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience.\n\nThis release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737) * openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734) * mod_auth_digest: access control bypass due to race condition (CVE-2019-0217) * openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407) * mod_session_cookie does not respect expiry time (CVE-2018-17199) * mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189) * mod_http2: possible crash on late upgrade (CVE-2019-0197) * mod_http2: read-after-free on a string compare (CVE-2019-0196) * nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511) * nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513) * mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516) * mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2019:3935", url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "JBCS-798", url: "https://issues.redhat.com/browse/JBCS-798", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3935.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release", tracking: { current_release_date: "2025-01-05T19:06:04+00:00", generator: { date: "2025-01-05T19:06:04+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.5", }, }, id: "RHSA-2019:3935", initial_release_date: "2019-11-20T16:08:18+00:00", revision_history: [ { date: "2019-11-20T16:08:18+00:00", number: "1", summary: "Initial version", }, { date: "2020-01-06T13:01:52+00:00", number: "2", summary: "Last updated version", }, { date: "2025-01-05T19:06:04+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Core Services 1", product: { name: "Red Hat JBoss Core Services 1", product_id: "Red Hat JBoss Core Services 1", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_core_services:1", }, }, }, ], category: "product_family", name: "Red Hat JBoss Core Services", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { cve: "CVE-2018-0734", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-10-30T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1644364", }, ], notes: [ { category: "description", text: "The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).", title: "Vulnerability description", }, { category: "summary", text: "openssl: timing side channel attack in the DSA signature algorithm", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Core Services 1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0734", }, { category: "external", summary: "RHBZ#1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0734", url: "https://www.cve.org/CVERecord?id=CVE-2018-0734", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", }, ], release_date: "2018-10-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat JBoss Core Services 1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "Red Hat JBoss Core Services 1", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: timing side channel attack in the DSA signature algorithm", }, { cve: "CVE-2018-0737", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-04-17T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1568253", }, ], notes: [ { category: "description", text: "OpenSSL RSA key generation was found to be vulnerable to cache side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover parts of the private key.", title: "Vulnerability description", }, { category: "summary", text: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Core Services 1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0737", }, { category: "external", summary: "RHBZ#1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0737", url: "https://www.cve.org/CVERecord?id=CVE-2018-0737", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", }, { category: "external", summary: "http://www.openwall.com/lists/oss-security/2018/04/16/3", url: "http://www.openwall.com/lists/oss-security/2018/04/16/3", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20180416.txt", url: "https://www.openssl.org/news/secadv/20180416.txt", }, ], release_date: "2018-04-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat JBoss Core Services 1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 3.3, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "Red Hat JBoss Core Services 1", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", }, { acknowledgments: [ { names: [ "Alejandro Cabrera Aldaya", ], organization: "Universidad Tecnologica de la Habana CUJAE; Cuba", }, { names: [ "Billy Bob Brumley", "Cesar Pereida Garcia", "Sohaib ul Hassan", ], }, { names: [ "Nicola Tuveri", ], organization: "Tampere University of Technology; Finland", }, ], cve: "CVE-2018-5407", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2018-11-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1645695", }, ], notes: [ { category: "description", text: "A microprocessor side-channel vulnerability was found on SMT (e.g, Hyper-Threading) architectures. An attacker running a malicious process on the same core of the processor as the victim process can extract certain secret information.", title: "Vulnerability description", }, { category: "summary", text: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", title: "Vulnerability summary", }, { category: "other", text: "This is a timing side-channel flaw on processors which implement SMT/Hyper-Threading architectures. It can result in leakage of secret data in applications such as OpenSSL that has secret dependent control flow at any granularity level. In order to exploit this flaw, the attacker needs to run a malicious process on the same core of the processor as the victim process.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Core Services 1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5407", }, { category: "external", summary: "RHBZ#1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5407", url: "https://www.cve.org/CVERecord?id=CVE-2018-5407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", }, { category: "external", summary: "https://github.com/bbbrumley/portsmash", url: "https://github.com/bbbrumley/portsmash", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20181112.txt", url: "https://www.openssl.org/news/secadv/20181112.txt", }, ], release_date: "2018-10-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat JBoss Core Services 1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "At this time Red Hat Engineering is working on patches for openssl package in Red Hat Enterprise Linux 7 to address this issue. Until fixes are available, users are advised to review the guidance supplied in the L1 Terminal Fault vulnerability article: https://access.redhat.com/security/vulnerabilities/L1TF and decide what their exposure across shared CPU threads are and act accordingly.", product_ids: [ "Red Hat JBoss Core Services 1", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "PHYSICAL", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:P/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "Red Hat JBoss Core Services 1", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", }, { cve: "CVE-2018-17189", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668497", }, ], notes: [ { category: "description", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: DoS via slow, unneeded request bodies", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Core Services 1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "RHBZ#1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17189", url: "https://www.cve.org/CVERecord?id=CVE-2018-17189", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat JBoss Core Services 1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "Red Hat JBoss Core Services 1", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: DoS via slow, unneeded request bodies", }, { cve: "CVE-2018-17199", cwe: { id: "CWE-613", name: "Insufficient Session Expiration", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668493", }, ], notes: [ { category: "description", text: "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_session_cookie does not respect expiry time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Core Services 1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17199", }, { category: "external", summary: "RHBZ#1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17199", url: "https://www.cve.org/CVERecord?id=CVE-2018-17199", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat JBoss Core Services 1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "Red Hat JBoss Core Services 1", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_session_cookie does not respect expiry time", }, { cve: "CVE-2019-0196", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695030", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the request incorrectly.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: read-after-free on a string compare", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Core Services 1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0196", }, { category: "external", summary: "RHBZ#1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0196", url: "https://www.cve.org/CVERecord?id=CVE-2019-0196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat JBoss Core Services 1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "Red Hat JBoss Core Services 1", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: read-after-free on a string compare", }, { cve: "CVE-2019-0197", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695042", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: possible crash on late upgrade", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Core Services 1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0197", }, { category: "external", summary: "RHBZ#1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0197", url: "https://www.cve.org/CVERecord?id=CVE-2019-0197", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-02-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat JBoss Core Services 1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L", version: "3.0", }, products: [ "Red Hat JBoss Core Services 1", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: possible crash on late upgrade", }, { cve: "CVE-2019-0217", cwe: { id: "CWE-284", name: "Improper Access Control", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695020", }, ], notes: [ { category: "description", text: "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_auth_digest: access control bypass due to race condition", title: "Vulnerability summary", }, { category: "other", text: "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Core Services 1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0217", }, { category: "external", summary: "RHBZ#1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0217", url: "https://www.cve.org/CVERecord?id=CVE-2019-0217", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat JBoss Core Services 1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.", product_ids: [ "Red Hat JBoss Core Services 1", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.0", }, products: [ "Red Hat JBoss Core Services 1", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_auth_digest: access control bypass due to race condition", }, { cve: "CVE-2019-9511", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741860", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker can request a large amount of data by manipulating window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this queue can consume excess CPU, memory, or both, leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: large amount of data requests leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "There are no mitigations available for nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Core Services 1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9511", }, { category: "external", summary: "RHBZ#1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9511", url: "https://www.cve.org/CVERecord?id=CVE-2019-9511", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat JBoss Core Services 1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "Red Hat JBoss Core Services 1", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Red Hat JBoss Core Services 1", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: large amount of data requests leads to denial of service", }, { acknowledgments: [ { names: [ "the Envoy security team", ], }, ], cve: "CVE-2019-9513", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1735741", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, using PRIORITY frames to flood the system, could cause excessive CPU usage and starvation of other clients. The largest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for packages nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Core Services 1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9513", }, { category: "external", summary: "RHBZ#1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9513", url: "https://www.cve.org/CVERecord?id=CVE-2019-9513", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", url: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T17:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat JBoss Core Services 1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "Red Hat JBoss Core Services 1", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Red Hat JBoss Core Services 1", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", }, { cve: "CVE-2019-9516", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741864", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, sending a stream of header with a 0-length header name and a 0-length header value, could cause some implementations to allocate memory for these headers and keep the allocations alive until the session dies. The can consume excess memory, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: 0-length headers lead to denial of service", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Core Services 1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9516", }, { category: "external", summary: "RHBZ#1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9516", url: "https://www.cve.org/CVERecord?id=CVE-2019-9516", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://github.com/nghttp2/nghttp2/issues/1382#", url: "https://github.com/nghttp2/nghttp2/issues/1382#", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat JBoss Core Services 1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "Red Hat JBoss Core Services 1", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Red Hat JBoss Core Services 1", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: 0-length headers lead to denial of service", }, { cve: "CVE-2019-9517", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741868", }, ], notes: [ { category: "description", text: "A vulnerability was found in HTTP/2. An attacker can open a HTTP/2 window so the peer can send without constraint. The TCP window remains closed so the peer cannot write the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the server's queue is setup, the responses can consume excess memory, CPU, or both, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: request for large response leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "The package httpd versions as shipped with Red Hat Enterprise Linux 5, 6 and 7 are not affected by this issue as HTTP/2 support is not provided.\nThis flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Core Services 1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9517", }, { category: "external", summary: "RHBZ#1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9517", url: "https://www.cve.org/CVERecord?id=CVE-2019-9517", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:08:18+00:00", details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "Red Hat JBoss Core Services 1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { category: "workaround", details: "The httpd version shipped with Red Hat Enterprise Linux 8 provides HTTP/2 support through mod_http2 package. While mod_http2 package is not updated, users can disable HTTP/2 support as mitigation action by executing the following steps:\n\n1. Stop httpd service:\n$ systemctl stop httpd\n\n2. Remove http/2 protocol support from configuration files:\n$ sed -i 's/\\(h2\\)\\|\\(h2c\\)//g' <httpd_config_file>\n\n3. Validate configuration files to make sure all syntax is valid:\n$ apachectl configtest\n\n4. Restart httpd service:\n$ systemctl start httpd", product_ids: [ "Red Hat JBoss Core Services 1", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Red Hat JBoss Core Services 1", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: request for large response leads to denial of service", }, ], }
RHSA-2020:4751
Vulnerability from csaf_redhat
Published
2020-11-04 01:44
Modified
2025-03-17 01:32
Summary
Red Hat Security Advisory: httpd:2.4 security, bug fix, and enhancement update
Notes
Topic
An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.
The following packages have been upgraded to a later upstream version: mod_http2 (1.15.7). (BZ#1814236)
Security Fix(es):
* httpd: memory corruption on early pushes (CVE-2019-10081)
* httpd: read-after-free in h2 connection shutdown (CVE-2019-10082)
* httpd: null-pointer dereference in mod_remoteip (CVE-2019-10097)
* httpd: mod_rewrite configurations vulnerable to open redirect (CVE-2020-1927)
* httpd: mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)
* httpd: mod_http2: read-after-free on a string compare (CVE-2019-0196)
* httpd: mod_http2: possible crash on late upgrade (CVE-2019-0197)
* httpd: limited cross-site scripting in mod_proxy error page (CVE-2019-10092)
* httpd: mod_rewrite potential open redirect (CVE-2019-10098)
* httpd: mod_proxy_ftp use of uninitialized value (CVE-2020-1934)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.\n\nThe following packages have been upgraded to a later upstream version: mod_http2 (1.15.7). (BZ#1814236)\n\nSecurity Fix(es):\n\n* httpd: memory corruption on early pushes (CVE-2019-10081)\n\n* httpd: read-after-free in h2 connection shutdown (CVE-2019-10082)\n\n* httpd: null-pointer dereference in mod_remoteip (CVE-2019-10097)\n\n* httpd: mod_rewrite configurations vulnerable to open redirect (CVE-2020-1927)\n\n* httpd: mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)\n\n* httpd: mod_http2: read-after-free on a string compare (CVE-2019-0196)\n\n* httpd: mod_http2: possible crash on late upgrade (CVE-2019-0197)\n\n* httpd: limited cross-site scripting in mod_proxy error page (CVE-2019-10092)\n\n* httpd: mod_rewrite potential open redirect (CVE-2019-10098)\n\n* httpd: mod_proxy_ftp use of uninitialized value (CVE-2020-1934)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:4751", url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/", url: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/", }, { category: "external", summary: "1209162", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1209162", }, { category: "external", summary: "1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "1743956", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743956", }, { category: "external", summary: "1743959", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743959", }, { category: "external", summary: "1743966", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743966", }, { category: "external", summary: "1743974", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743974", }, { category: "external", summary: "1743996", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743996", }, { category: "external", summary: "1771847", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1771847", }, { category: "external", summary: "1814236", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1814236", }, { category: "external", summary: "1820761", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1820761", }, { category: "external", summary: "1820772", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1820772", }, { category: "external", summary: "1832844", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1832844", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4751.json", }, ], title: "Red Hat Security Advisory: httpd:2.4 security, bug fix, and enhancement update", tracking: { current_release_date: "2025-03-17T01:32:57+00:00", generator: { date: "2025-03-17T01:32:57+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2020:4751", initial_release_date: "2020-11-04T01:44:47+00:00", revision_history: [ { date: "2020-11-04T01:44:47+00:00", number: "1", summary: "Initial version", }, { date: "2020-11-04T01:44:47+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-17T01:32:57+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "httpd:2.4:8030020200818000036:30b713e6", product: { name: "httpd:2.4:8030020200818000036:30b713e6", product_id: "httpd:2.4:8030020200818000036:30b713e6", product_identification_helper: { purl: "pkg:rpmmod/redhat/httpd@2.4:8030020200818000036:30b713e6", }, }, }, { category: "product_version", name: "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product: { name: "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product_id: "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-filesystem@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=noarch", }, }, }, { category: "product_version", name: "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product: { name: "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product_id: "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-manual@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", product: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", product_id: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=src", }, }, }, { category: "product_version", name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", product: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", product_id: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=src", }, }, }, { category: "product_version", name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", product: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", product_id: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=src&epoch=1", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debugsource@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-devel@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_id: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=x86_64", }, }, }, { category: "product_version", name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_id: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debuginfo@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=x86_64", }, }, }, { category: "product_version", name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_id: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debugsource@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=x86_64", }, }, }, { category: "product_version", name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_id: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_id: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debuginfo@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_id: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debugsource@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64&epoch=1", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debugsource@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-devel@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_id: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=s390x", }, }, }, { category: "product_version", name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_id: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debuginfo@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=s390x", }, }, }, { category: "product_version", name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_id: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debugsource@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=s390x", }, }, }, { category: "product_version", name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_id: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_id: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debuginfo@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_id: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debugsource@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x&epoch=1", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debugsource@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-devel@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_id: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_id: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debuginfo@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_id: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debugsource@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_id: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_id: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debuginfo@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_id: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debugsource@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le&epoch=1", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debugsource@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-devel@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_id: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=aarch64", }, }, }, { category: "product_version", name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_id: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debuginfo@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=aarch64", }, }, }, { category: "product_version", name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_id: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debugsource@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=aarch64", }, }, }, { category: "product_version", name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_id: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_id: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debuginfo@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_id: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debugsource@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64&epoch=1", }, }, }, ], category: "architecture", name: "aarch64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, product_reference: "httpd:2.4:8030020200818000036:30b713e6", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", }, product_reference: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", }, product_reference: "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", }, product_reference: "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", }, product_reference: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", }, product_reference: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", }, product_reference: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", }, product_reference: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", }, product_reference: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", }, product_reference: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", }, product_reference: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", }, product_reference: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", }, product_reference: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", }, product_reference: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", }, product_reference: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", }, product_reference: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", }, product_reference: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", }, product_reference: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", }, product_reference: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", }, product_reference: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", }, product_reference: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", }, product_reference: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", }, product_reference: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", }, product_reference: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", }, product_reference: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", }, product_reference: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", }, product_reference: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", }, product_reference: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", }, product_reference: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", }, product_reference: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, ], }, vulnerabilities: [ { cve: "CVE-2018-17189", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668497", }, ], notes: [ { category: "description", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: DoS via slow, unneeded request bodies", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "RHBZ#1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17189", url: "https://www.cve.org/CVERecord?id=CVE-2018-17189", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: DoS via slow, unneeded request bodies", }, { cve: "CVE-2019-0196", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695030", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the request incorrectly.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: read-after-free on a string compare", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0196", }, { category: "external", summary: "RHBZ#1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0196", url: "https://www.cve.org/CVERecord?id=CVE-2019-0196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: read-after-free on a string compare", }, { cve: "CVE-2019-0197", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695042", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: possible crash on late upgrade", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0197", }, { category: "external", summary: "RHBZ#1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0197", url: "https://www.cve.org/CVERecord?id=CVE-2019-0197", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-02-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: possible crash on late upgrade", }, { cve: "CVE-2019-10081", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743966", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache httpd, in mod_http2. Under certain circumstances, HTTP/2 early pushes could lead to memory corruption, causing a server to crash.", title: "Vulnerability description", }, { category: "summary", text: "httpd: memory corruption on early pushes", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10081", }, { category: "external", summary: "RHBZ#1743966", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743966", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10081", url: "https://www.cve.org/CVERecord?id=CVE-2019-10081", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10081", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10081", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "workaround", details: "This flaw is only exploitable if Apache httpd is configured to respond to HTTP/2 requests, which is done by including \"h2\" or \"h2c\" in the \"Protocols\" list in a configuration file. The following command can be used to search for possible vulnerable configurations: \n\n grep -R '^\\s*Protocols\\>.*\\<h2\\>' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_http2.html", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: memory corruption on early pushes", }, { cve: "CVE-2019-10082", discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743974", }, ], notes: [ { category: "description", text: "A read-after-free vulnerability was discovered in Apache httpd, in mod_http2. A specially crafted http/2 client session could cause the server to read memory that was previously freed during connection shutdown, potentially leading to a crash.", title: "Vulnerability description", }, { category: "summary", text: "httpd: read-after-free in h2 connection shutdown", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10082", }, { category: "external", summary: "RHBZ#1743974", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743974", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10082", url: "https://www.cve.org/CVERecord?id=CVE-2019-10082", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10082", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10082", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "workaround", details: "This flaw is only exploitable if Apache httpd is configured to respond to HTTP/2 requests, which is done by including \"h2\" or \"h2c\" in the \"Protocols\" list in a configuration file. The following command can be used to search for possible vulnerable configurations: \n\n grep -R '^\\s*Protocols\\>.*\\<h2\\>' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_http2.html", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: read-after-free in h2 connection shutdown", }, { cve: "CVE-2019-10092", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743956", }, ], notes: [ { category: "description", text: "A cross-site scripting vulnerability was found in Apache httpd, affecting the mod_proxy error page. Under certain circumstances, a crafted link could inject content into the HTML displayed in the error page, potentially leading to client-side exploitation.", title: "Vulnerability description", }, { category: "summary", text: "httpd: limited cross-site scripting in mod_proxy error page", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10092", }, { category: "external", summary: "RHBZ#1743956", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743956", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10092", url: "https://www.cve.org/CVERecord?id=CVE-2019-10092", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10092", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10092", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "workaround", details: "This flaw is only exploitable if Proxy* directives are used in Apache httpd configuration. The following command can be used to search for possible vulnerable configurations:\n\n grep -R '^\\s*Proxy' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_proxy.html", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.7, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: limited cross-site scripting in mod_proxy error page", }, { cve: "CVE-2019-10097", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743996", }, ], notes: [ { category: "description", text: "A vulnerability was discovered in Apache httpd, in mod_remoteip. A trusted proxy using the \"PROXY\" protocol could send specially crafted headers that can cause httpd to experience a stack buffer overflow or NULL pointer dereference, leading to a crash or other potential consequences.\r\n\r\nThis issue could only be exploited by configured trusted intermediate proxy servers. HTTP clients such as browsers could not exploit the vulnerability.", title: "Vulnerability description", }, { category: "summary", text: "httpd: null-pointer dereference in mod_remoteip", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10097", }, { category: "external", summary: "RHBZ#1743996", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743996", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10097", url: "https://www.cve.org/CVERecord?id=CVE-2019-10097", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10097", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10097", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "workaround", details: "This flaw is only exploitable if RemoteIP* directives are used in Apache httpd configuration. The following command can be used to search for possible vulnerable configurations:\n\n grep -R '^\\s*RemoteIP' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_remoteip.html", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.6, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: null-pointer dereference in mod_remoteip", }, { cve: "CVE-2019-10098", discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743959", }, ], notes: [ { category: "description", text: "A vulnerability was discovered in Apache httpd, in mod_rewrite. Certain self-referential mod_rewrite rules could be fooled by encoded newlines, causing them to redirect to an unexpected location. An attacker could abuse this flaw in a phishing attack or as part of a client-side attack on browsers.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_rewrite potential open redirect", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10098", }, { category: "external", summary: "RHBZ#1743959", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743959", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10098", url: "https://www.cve.org/CVERecord?id=CVE-2019-10098", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10098", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10098", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "workaround", details: "This flaw requires the use of certain Rewrite configuration directives. The following command can be used to search for possible vulnerable configurations:\n\n grep -R '^\\s*Rewrite' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_rewrite.html", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 3.7, baseSeverity: "LOW", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_rewrite potential open redirect", }, { cve: "CVE-2020-1927", cwe: { id: "CWE-601", name: "URL Redirection to Untrusted Site ('Open Redirect')", }, discovery_date: "2020-04-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1820761", }, ], notes: [ { category: "description", text: "A flaw was found in Apache HTTP Server (httpd) versions 2.4.0 to 2.4.41. Redirects configured with mod_rewrite that were intended to be self-referential might be fooled by encoded newlines and redirected instead to an unexpected URL within the request URL.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_rewrite configurations vulnerable to open redirect", title: "Vulnerability summary", }, { category: "other", text: "This issue only affects httpd versions between 2.4.0 and 2.4.41. Therefore Red Hat Enterprise Linux 5 and 6 are not affected by this flaw.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-1927", }, { category: "external", summary: "RHBZ#1820761", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1820761", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-1927", url: "https://www.cve.org/CVERecord?id=CVE-2020-1927", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-1927", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-1927", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2020-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.1, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_rewrite configurations vulnerable to open redirect", }, { cve: "CVE-2020-1934", cwe: { id: "CWE-456", name: "Missing Initialization of a Variable", }, discovery_date: "2020-04-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1820772", }, ], notes: [ { category: "description", text: "A flaw was found in Apache's HTTP server (httpd) .The mod_proxy_ftp module may use uninitialized memory with proxying to a malicious FTP server. The highest threat from this vulnerability is to data confidentiality.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_proxy_ftp use of uninitialized value", title: "Vulnerability summary", }, { category: "other", text: "This flaw is caused by use of an uninitialized memory variable. Practically this has no impact, but in some corner cases it is possible that the contents of this variable could be read by a remote process, causing loss of confidentiality as a result of this. There is no evidence of code execution.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-1934", }, { category: "external", summary: "RHBZ#1820772", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1820772", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-1934", url: "https://www.cve.org/CVERecord?id=CVE-2020-1934", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-1934", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-1934", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2020-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 3.7, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_proxy_ftp use of uninitialized value", }, ], }
rhsa-2019:4126
Vulnerability from csaf_redhat
Published
2019-12-10 07:59
Modified
2025-02-02 20:19
Summary
Red Hat Security Advisory: httpd24-httpd security, bug fix, and enhancement update
Notes
Topic
An update for httpd24, httpd24-httpd, and httpd24-nghttp2 is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The Apache HTTP Server is a powerful, efficient, and extensible web server. The httpd24 packages provide a recent stable release of version 2.4 of the Apache HTTP Server, along with the mod_auth_kerb module.
Security Fix(es):
* httpd: mod_session_cookie does not respect expiry time (CVE-2018-17199)
* httpd: mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)
* httpd: null-pointer dereference in mod_remoteip (CVE-2019-10097)
* httpd: mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)
* httpd: URL normalization inconsistency (CVE-2019-0220)
* httpd: limited cross-site scripting in mod_proxy error page (CVE-2019-10092)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang (BZ#1669213)
* httpd can not be started with mod_md enabled (BZ#1673019)
* Rebuild metapackage with latest scl-utils (BZ#1696527)
* fix a regression introduced in r1740928 (BZ#1707636)
* duplicated cookie in Apache httpd with mod_session (BZ#1725922)
* Unexpected OCSP in proxy SSL connection (BZ#1744120)
Enhancement(s):
* RFE: updated collection for httpd 2.4 (BZ#1726706)
Additional Changes:
For detailed information on changes in this release, see the Red Hat Software Collections 3.4 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for httpd24, httpd24-httpd, and httpd24-nghttp2 is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The Apache HTTP Server is a powerful, efficient, and extensible web server. The httpd24 packages provide a recent stable release of version 2.4 of the Apache HTTP Server, along with the mod_auth_kerb module.\n\nSecurity Fix(es):\n\n* httpd: mod_session_cookie does not respect expiry time (CVE-2018-17199)\n\n* httpd: mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)\n\n* httpd: null-pointer dereference in mod_remoteip (CVE-2019-10097)\n\n* httpd: mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)\n\n* httpd: URL normalization inconsistency (CVE-2019-0220)\n\n* httpd: limited cross-site scripting in mod_proxy error page (CVE-2019-10092)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang (BZ#1669213)\n\n* httpd can not be started with mod_md enabled (BZ#1673019)\n\n* Rebuild metapackage with latest scl-utils (BZ#1696527)\n\n* fix a regression introduced in r1740928 (BZ#1707636)\n\n* duplicated cookie in Apache httpd with mod_session (BZ#1725922)\n\n* Unexpected OCSP in proxy SSL connection (BZ#1744120)\n\nEnhancement(s):\n\n* RFE: updated collection for httpd 2.4 (BZ#1726706)\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Software Collections 3.4 Release Notes linked from the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2019:4126", url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_software_collections/3/html/3.4_release_notes/", url: "https://access.redhat.com/documentation/en-us/red_hat_software_collections/3/html/3.4_release_notes/", }, { category: "external", summary: "1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "1669213", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1669213", }, { category: "external", summary: "1673019", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1673019", }, { category: "external", summary: "1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "1695036", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695036", }, { category: "external", summary: "1696527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1696527", }, { category: "external", summary: "1707636", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1707636", }, { category: "external", summary: "1725922", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1725922", }, { category: "external", summary: "1743956", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743956", }, { category: "external", summary: "1743996", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743996", }, { category: "external", summary: "1744120", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1744120", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_4126.json", }, ], title: "Red Hat Security Advisory: httpd24-httpd security, bug fix, and enhancement update", tracking: { current_release_date: "2025-02-02T20:19:34+00:00", generator: { date: "2025-02-02T20:19:34+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.6", }, }, id: "RHSA-2019:4126", initial_release_date: "2019-12-10T07:59:33+00:00", revision_history: [ { date: "2019-12-10T07:59:33+00:00", number: "1", summary: "Initial version", }, { date: "2019-12-10T07:59:33+00:00", number: "2", summary: "Last updated version", }, { date: "2025-02-02T20:19:34+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el6", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el6", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, ], category: "product_family", name: "Red Hat Software Collections", }, { branches: [ { category: "product_version", name: "httpd24-0:1.1-19.el6.x86_64", product: { name: "httpd24-0:1.1-19.el6.x86_64", product_id: "httpd24-0:1.1-19.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-build-0:1.1-19.el6.x86_64", product: { name: "httpd24-build-0:1.1-19.el6.x86_64", product_id: "httpd24-build-0:1.1-19.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-build@1.1-19.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-runtime-0:1.1-19.el6.x86_64", product: { name: "httpd24-runtime-0:1.1-19.el6.x86_64", product_id: "httpd24-runtime-0:1.1-19.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-runtime@1.1-19.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-scldevel-0:1.1-19.el6.x86_64", product: { name: "httpd24-scldevel-0:1.1-19.el6.x86_64", product_id: "httpd24-scldevel-0:1.1-19.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", product: { name: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", product_id: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", product: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", product_id: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", product: { name: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", product_id: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", product: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", product_id: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-httpd-0:2.4.34-15.el6.x86_64", product_id: "httpd24-httpd-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", product_id: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", product_id: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", product_id: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", product: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", product_id: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-mod_session-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-mod_session-0:2.4.34-15.el6.x86_64", product_id: "httpd24-mod_session-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", product: { name: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", product_id: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", product_id: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-0:1.1-19.el7.x86_64", product: { name: "httpd24-0:1.1-19.el7.x86_64", product_id: "httpd24-0:1.1-19.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-runtime-0:1.1-19.el7.x86_64", product: { name: "httpd24-runtime-0:1.1-19.el7.x86_64", product_id: "httpd24-runtime-0:1.1-19.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-runtime@1.1-19.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-scldevel-0:1.1-19.el7.x86_64", product: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64", product_id: "httpd24-scldevel-0:1.1-19.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", product: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", product_id: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", product: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", product_id: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", product: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", product_id: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", product: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", product_id: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64", product_id: "httpd24-httpd-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", product_id: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", product_id: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", product_id: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", product_id: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_md@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", product: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", product_id: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", product_id: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", product: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", product_id: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", product_id: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el7?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "httpd24-0:1.1-19.el6.src", product: { name: "httpd24-0:1.1-19.el6.src", product_id: "httpd24-0:1.1-19.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el6?arch=src", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el6.src", product: { name: "httpd24-nghttp2-0:1.7.1-8.el6.src", product_id: "httpd24-nghttp2-0:1.7.1-8.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el6?arch=src", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el6.src", product: { name: "httpd24-httpd-0:2.4.34-15.el6.src", product_id: "httpd24-httpd-0:2.4.34-15.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el6?arch=src", }, }, }, { category: "product_version", name: "httpd24-0:1.1-19.el7.src", product: { name: "httpd24-0:1.1-19.el7.src", product_id: "httpd24-0:1.1-19.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=src", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el7.src", product: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src", product_id: "httpd24-nghttp2-0:1.7.1-8.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=src", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el7.src", product: { name: "httpd24-httpd-0:2.4.34-15.el7.src", product_id: "httpd24-httpd-0:2.4.34-15.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", product: { name: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", product_id: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-manual@2.4.34-15.el6?arch=noarch", }, }, }, { category: "product_version", name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", product: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", product_id: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-manual@2.4.34-15.el7?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "httpd24-0:1.1-19.el7.ppc64le", product: { name: "httpd24-0:1.1-19.el7.ppc64le", product_id: "httpd24-0:1.1-19.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-runtime-0:1.1-19.el7.ppc64le", product: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le", product_id: "httpd24-runtime-0:1.1-19.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-runtime@1.1-19.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-scldevel-0:1.1-19.el7.ppc64le", product: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le", product_id: "httpd24-scldevel-0:1.1-19.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", product: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", product_id: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", product: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", product_id: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", product: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", product_id: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", product: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", product_id: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_md@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", product: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", product_id: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el7?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", product: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", product_id: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el7?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el7?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "httpd24-0:1.1-19.el7.s390x", product: { name: "httpd24-0:1.1-19.el7.s390x", product_id: "httpd24-0:1.1-19.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-runtime-0:1.1-19.el7.s390x", product: { name: "httpd24-runtime-0:1.1-19.el7.s390x", product_id: "httpd24-runtime-0:1.1-19.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-runtime@1.1-19.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-scldevel-0:1.1-19.el7.s390x", product: { name: "httpd24-scldevel-0:1.1-19.el7.s390x", product_id: "httpd24-scldevel-0:1.1-19.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", product: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", product_id: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", product: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", product_id: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", product: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", product_id: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", product: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", product_id: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el7.s390x", product: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x", product_id: "httpd24-httpd-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", product: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", product_id: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", product: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", product_id: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", product: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", product_id: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-mod_md-0:2.4.34-15.el7.s390x", product: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x", product_id: "httpd24-mod_md-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_md@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", product: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", product_id: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el7?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "httpd24-mod_session-0:2.4.34-15.el7.s390x", product: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x", product_id: "httpd24-mod_session-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", product: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", product_id: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el7?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", product: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", product_id: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el7?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "httpd24-0:1.1-19.el7.aarch64", product: { name: "httpd24-0:1.1-19.el7.aarch64", product_id: "httpd24-0:1.1-19.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-runtime-0:1.1-19.el7.aarch64", product: { name: "httpd24-runtime-0:1.1-19.el7.aarch64", product_id: "httpd24-runtime-0:1.1-19.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-runtime@1.1-19.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-scldevel-0:1.1-19.el7.aarch64", product: { name: "httpd24-scldevel-0:1.1-19.el7.aarch64", product_id: "httpd24-scldevel-0:1.1-19.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", product: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", product_id: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", product: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", product_id: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", product: { name: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", product_id: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", product: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", product_id: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-httpd-0:2.4.34-15.el7.aarch64", product_id: "httpd24-httpd-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", product_id: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", product_id: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", product_id: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", product_id: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_md@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", product: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", product_id: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el7?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", product_id: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", product: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", product_id: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el7?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", product_id: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el7?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", }, product_reference: "httpd24-0:1.1-19.el6.src", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-build-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-build-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el6.src", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el6.src", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", }, product_reference: "httpd24-0:1.1-19.el6.src", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-build-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-build-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el6.src", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el6.src", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, ], }, vulnerabilities: [ { cve: "CVE-2018-17189", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668497", }, ], notes: [ { category: "description", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: DoS via slow, unneeded request bodies", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "RHBZ#1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17189", url: "https://www.cve.org/CVERecord?id=CVE-2018-17189", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: DoS via slow, unneeded request bodies", }, { cve: "CVE-2018-17199", cwe: { id: "CWE-613", name: "Insufficient Session Expiration", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668493", }, ], notes: [ { category: "description", text: "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_session_cookie does not respect expiry time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17199", }, { category: "external", summary: "RHBZ#1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17199", url: "https://www.cve.org/CVERecord?id=CVE-2018-17199", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_session_cookie does not respect expiry time", }, { cve: "CVE-2019-0217", cwe: { id: "CWE-284", name: "Improper Access Control", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695020", }, ], notes: [ { category: "description", text: "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_auth_digest: access control bypass due to race condition", title: "Vulnerability summary", }, { category: "other", text: "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0217", }, { category: "external", summary: "RHBZ#1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0217", url: "https://www.cve.org/CVERecord?id=CVE-2019-0217", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { category: "workaround", details: "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_auth_digest: access control bypass due to race condition", }, { cve: "CVE-2019-0220", cwe: { id: "CWE-41", name: "Improper Resolution of Path Equivalence", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695036", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.0 to 2.4.38. When the path component of a request URL contains multiple consecutive slashes ('/'), directives such as LocationMatch and RewriteRule must account for duplicates in regular expressions while other aspects of the servers processing will implicitly collapse them.", title: "Vulnerability description", }, { category: "summary", text: "httpd: URL normalization inconsistency", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Low, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0220", }, { category: "external", summary: "RHBZ#1695036", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695036", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0220", url: "https://www.cve.org/CVERecord?id=CVE-2019-0220", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0220", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0220", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { category: "workaround", details: "This flaw can be mitigation by replacing multiple consecutive slashes, used in directives that match against the path component of the request URL with regular expressions.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "LOW", baseScore: 3.3, baseSeverity: "LOW", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: URL normalization inconsistency", }, { cve: "CVE-2019-10092", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743956", }, ], notes: [ { category: "description", text: "A cross-site scripting vulnerability was found in Apache httpd, affecting the mod_proxy error page. Under certain circumstances, a crafted link could inject content into the HTML displayed in the error page, potentially leading to client-side exploitation.", title: "Vulnerability description", }, { category: "summary", text: "httpd: limited cross-site scripting in mod_proxy error page", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10092", }, { category: "external", summary: "RHBZ#1743956", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743956", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10092", url: "https://www.cve.org/CVERecord?id=CVE-2019-10092", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10092", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10092", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { category: "workaround", details: "This flaw is only exploitable if Proxy* directives are used in Apache httpd configuration. The following command can be used to search for possible vulnerable configurations:\n\n grep -R '^\\s*Proxy' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_proxy.html", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.7, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: limited cross-site scripting in mod_proxy error page", }, { cve: "CVE-2019-10097", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743996", }, ], notes: [ { category: "description", text: "A vulnerability was discovered in Apache httpd, in mod_remoteip. A trusted proxy using the \"PROXY\" protocol could send specially crafted headers that can cause httpd to experience a stack buffer overflow or NULL pointer dereference, leading to a crash or other potential consequences.\r\n\r\nThis issue could only be exploited by configured trusted intermediate proxy servers. HTTP clients such as browsers could not exploit the vulnerability.", title: "Vulnerability description", }, { category: "summary", text: "httpd: null-pointer dereference in mod_remoteip", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10097", }, { category: "external", summary: "RHBZ#1743996", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743996", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10097", url: "https://www.cve.org/CVERecord?id=CVE-2019-10097", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10097", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10097", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { category: "workaround", details: "This flaw is only exploitable if RemoteIP* directives are used in Apache httpd configuration. The following command can be used to search for possible vulnerable configurations:\n\n grep -R '^\\s*RemoteIP' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_remoteip.html", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.6, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: null-pointer dereference in mod_remoteip", }, ], }
RHSA-2019:3933
Vulnerability from csaf_redhat
Published
2019-11-20 16:14
Modified
2025-03-17 01:33
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release on RHEL 7
Notes
Topic
An update is now available for JBoss Core Services on RHEL 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737)
* openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734)
* mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)
* openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407)
* mod_session_cookie does not respect expiry time (CVE-2018-17199)
* mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)
* mod_http2: possible crash on late upgrade (CVE-2019-0197)
* mod_http2: read-after-free on a string compare (CVE-2019-0196)
* nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511)
* nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513)
* mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516)
* mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for JBoss Core Services on RHEL 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "This release adds the new Apache HTTP Server 2.4.37 packages that are part of the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.29 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys (CVE-2018-0737)\n* openssl: timing side channel attack in the DSA signature algorithm (CVE-2018-0734)\n* mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)\n* openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash) (CVE-2018-5407)\n* mod_session_cookie does not respect expiry time (CVE-2018-17199)\n* mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)\n* mod_http2: possible crash on late upgrade (CVE-2019-0197)\n* mod_http2: read-after-free on a string compare (CVE-2019-0196)\n* nghttp2: HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511)\n* nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513)\n* mod_http2: HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516)\n* mod_http2: HTTP/2: request for large response leads to denial of service (CVE-2019-9517)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2019:3933", url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "JBCS-798", url: "https://issues.redhat.com/browse/JBCS-798", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3933.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 Security Release on RHEL 7", tracking: { current_release_date: "2025-03-17T01:33:23+00:00", generator: { date: "2025-03-17T01:33:23+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2019:3933", initial_release_date: "2019-11-20T16:14:21+00:00", revision_history: [ { date: "2019-11-20T16:14:21+00:00", number: "1", summary: "Initial version", }, { date: "2020-01-06T13:04:40+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-17T01:33:23+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Core Services on RHEL 7 Server", product: { name: "Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_core_services:1::el7", }, }, }, ], category: "product_family", name: "Red Hat JBoss Core Services", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", product_id: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", product_id: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-devel@2.11-20.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", product_id: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson-debuginfo@2.11-20.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-63.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-63.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", product_id: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.1.1-25.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", product_id: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-48.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", product_id: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", product_id: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-devel@1.0.6-7.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", product_id: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli-debuginfo@1.0.6-7.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", product_id: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", product_id: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.39.2-4.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", product_id: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.39.2-4.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", product_id: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", product_id: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl@7.64.1-14.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", product_id: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-libcurl-devel@7.64.1-14.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", product_id: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl-debuginfo@7.64.1-14.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_md@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.37-33.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.37-33.jbcs.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", product_id: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.37-33.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.46-22.redhat_1.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.46-22.redhat_1.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.46-22.redhat_1.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.12-9.Final_redhat_2.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el7?arch=x86_64", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", product: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", product_id: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.2-16.GA.jbcs.el7?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", product: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", product_id: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-jansson@2.11-20.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", product: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", product_id: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-63.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", product: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", product_id: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1-25.jbcs.el7?arch=src&epoch=1", }, }, }, { category: "product_version", name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", product: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", product_id: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-48.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", product: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", product_id: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-brotli@1.0.6-7.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", product: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", product_id: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-4.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", product: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", product_id: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-curl@7.64.1-14.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", product: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", product_id: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-33.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", product: { name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", product_id: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.46-22.redhat_1.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", product: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", product_id: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.12-9.Final_redhat_2.jbcs.el7?arch=src", }, }, }, { category: "product_version", name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", product: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", product_id: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-16.GA.jbcs.el7?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", product: { name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", product_id: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jbcs-httpd24-httpd-manual@2.4.37-33.jbcs.el7?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", }, product_reference: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", }, product_reference: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", }, product_reference: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", }, product_reference: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", }, product_reference: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", }, product_reference: "jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", }, product_reference: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", }, product_reference: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", }, product_reference: "jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", }, product_reference: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", }, product_reference: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", }, product_reference: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, { category: "default_component_of", full_product_name: { name: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server", product_id: "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", }, product_reference: "jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", relates_to_product_reference: "7Server-JBCS", }, ], }, vulnerabilities: [ { cve: "CVE-2018-0734", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-10-30T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1644364", }, ], notes: [ { category: "description", text: "The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).", title: "Vulnerability description", }, { category: "summary", text: "openssl: timing side channel attack in the DSA signature algorithm", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0734", }, { category: "external", summary: "RHBZ#1644364", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1644364", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0734", url: "https://www.cve.org/CVERecord?id=CVE-2018-0734", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0734", }, ], release_date: "2018-10-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: timing side channel attack in the DSA signature algorithm", }, { cve: "CVE-2018-0737", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2018-04-17T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1568253", }, ], notes: [ { category: "description", text: "OpenSSL RSA key generation was found to be vulnerable to cache side-channel attacks. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover parts of the private key.", title: "Vulnerability description", }, { category: "summary", text: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-0737", }, { category: "external", summary: "RHBZ#1568253", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1568253", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-0737", url: "https://www.cve.org/CVERecord?id=CVE-2018-0737", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-0737", }, { category: "external", summary: "http://www.openwall.com/lists/oss-security/2018/04/16/3", url: "http://www.openwall.com/lists/oss-security/2018/04/16/3", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20180416.txt", url: "https://www.openssl.org/news/secadv/20180416.txt", }, ], release_date: "2018-04-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 3.3, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys", }, { acknowledgments: [ { names: [ "Alejandro Cabrera Aldaya", ], organization: "Universidad Tecnologica de la Habana CUJAE; Cuba", }, { names: [ "Billy Bob Brumley", "Cesar Pereida Garcia", "Sohaib ul Hassan", ], }, { names: [ "Nicola Tuveri", ], organization: "Tampere University of Technology; Finland", }, ], cve: "CVE-2018-5407", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2018-11-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1645695", }, ], notes: [ { category: "description", text: "A microprocessor side-channel vulnerability was found on SMT (e.g, Hyper-Threading) architectures. An attacker running a malicious process on the same core of the processor as the victim process can extract certain secret information.", title: "Vulnerability description", }, { category: "summary", text: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", title: "Vulnerability summary", }, { category: "other", text: "This is a timing side-channel flaw on processors which implement SMT/Hyper-Threading architectures. It can result in leakage of secret data in applications such as OpenSSL that has secret dependent control flow at any granularity level. In order to exploit this flaw, the attacker needs to run a malicious process on the same core of the processor as the victim process.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5407", }, { category: "external", summary: "RHBZ#1645695", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1645695", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5407", url: "https://www.cve.org/CVERecord?id=CVE-2018-5407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5407", }, { category: "external", summary: "https://github.com/bbbrumley/portsmash", url: "https://github.com/bbbrumley/portsmash", }, { category: "external", summary: "https://www.openssl.org/news/secadv/20181112.txt", url: "https://www.openssl.org/news/secadv/20181112.txt", }, ], release_date: "2018-10-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "At this time Red Hat Engineering is working on patches for openssl package in Red Hat Enterprise Linux 7 to address this issue. Until fixes are available, users are advised to review the guidance supplied in the L1 Terminal Fault vulnerability article: https://access.redhat.com/security/vulnerabilities/L1TF and decide what their exposure across shared CPU threads are and act accordingly.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "PHYSICAL", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:P/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)", }, { cve: "CVE-2018-17189", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668497", }, ], notes: [ { category: "description", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: DoS via slow, unneeded request bodies", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "RHBZ#1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17189", url: "https://www.cve.org/CVERecord?id=CVE-2018-17189", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: DoS via slow, unneeded request bodies", }, { cve: "CVE-2018-17199", cwe: { id: "CWE-613", name: "Insufficient Session Expiration", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668493", }, ], notes: [ { category: "description", text: "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_session_cookie does not respect expiry time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17199", }, { category: "external", summary: "RHBZ#1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17199", url: "https://www.cve.org/CVERecord?id=CVE-2018-17199", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_session_cookie does not respect expiry time", }, { cve: "CVE-2019-0196", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695030", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the request incorrectly.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: read-after-free on a string compare", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0196", }, { category: "external", summary: "RHBZ#1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0196", url: "https://www.cve.org/CVERecord?id=CVE-2019-0196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: read-after-free on a string compare", }, { cve: "CVE-2019-0197", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695042", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: possible crash on late upgrade", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0197", }, { category: "external", summary: "RHBZ#1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0197", url: "https://www.cve.org/CVERecord?id=CVE-2019-0197", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-02-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: possible crash on late upgrade", }, { cve: "CVE-2019-0217", cwe: { id: "CWE-284", name: "Improper Access Control", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695020", }, ], notes: [ { category: "description", text: "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_auth_digest: access control bypass due to race condition", title: "Vulnerability summary", }, { category: "other", text: "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0217", }, { category: "external", summary: "RHBZ#1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0217", url: "https://www.cve.org/CVERecord?id=CVE-2019-0217", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_auth_digest: access control bypass due to race condition", }, { cve: "CVE-2019-9511", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741860", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker can request a large amount of data by manipulating window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this queue can consume excess CPU, memory, or both, leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: large amount of data requests leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "There are no mitigations available for nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9511", }, { category: "external", summary: "RHBZ#1741860", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741860", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9511", url: "https://www.cve.org/CVERecord?id=CVE-2019-9511", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9511", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: large amount of data requests leads to denial of service", }, { acknowledgments: [ { names: [ "the Envoy security team", ], }, ], cve: "CVE-2019-9513", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1735741", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, using PRIORITY frames to flood the system, could cause excessive CPU usage and starvation of other clients. The largest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for packages nghttp2 and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9513", }, { category: "external", summary: "RHBZ#1735741", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1735741", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9513", url: "https://www.cve.org/CVERecord?id=CVE-2019-9513", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9513", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", url: "https://nghttp2.org/blog/2019/08/19/nghttp2-v1-39-2/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T17:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: flood using PRIORITY frames results in excessive resource consumption", }, { cve: "CVE-2019-9516", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741864", }, ], notes: [ { category: "description", text: "A flaw was found in HTTP/2. An attacker, sending a stream of header with a 0-length header name and a 0-length header value, could cause some implementations to allocate memory for these headers and keep the allocations alive until the session dies. The can consume excess memory, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: 0-length headers lead to denial of service", title: "Vulnerability summary", }, { category: "other", text: "This flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9516", }, { category: "external", summary: "RHBZ#1741864", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741864", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9516", url: "https://www.cve.org/CVERecord?id=CVE-2019-9516", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9516", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://github.com/nghttp2/nghttp2/issues/1382#", url: "https://github.com/nghttp2/nghttp2/issues/1382#", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, { category: "external", summary: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", url: "https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "Red Hat Quay 3.0 uses Nginx 1.12 from Red Hat Software Collections. It will be updated once a fixed is released for Software Collections. In the meantime users of Quay can disable http/2 support in Nginx by following these instructions:\n\n1. Copy the Nginx configuration from the quay container to the host\n$ docker cp 3aadf1421ba3:/quay-registry/conf/nginx/ /mnt/quay/nginx\n\n2. Edit the Nginx configuration, removing http/2 support\n$ sed -i 's/http2 //g' /mnt/quay/nginx/nginx.conf\n\n3. Restart Nginx with the new configuration mounted into the container, eg:\n$ docker run --restart=always -p 443:8443 -p 80:8080 --sysctl net.core.somaxconn=4096 -v /mnt/quay/config:/conf/stack:Z -v /mnt/quay/storage:/datastorage -v /mnt/quay/nginx:/quay-registry/config/nginx:Z -d quay.io/redhat/quay:v3.0.3", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: 0-length headers lead to denial of service", }, { cve: "CVE-2019-9517", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1741868", }, ], notes: [ { category: "description", text: "A vulnerability was found in HTTP/2. An attacker can open a HTTP/2 window so the peer can send without constraint. The TCP window remains closed so the peer cannot write the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the server's queue is setup, the responses can consume excess memory, CPU, or both, potentially leading to a denial of service. The highest threat from this vulnerability is to system availability.", title: "Vulnerability description", }, { category: "summary", text: "HTTP/2: request for large response leads to denial of service", title: "Vulnerability summary", }, { category: "other", text: "The package httpd versions as shipped with Red Hat Enterprise Linux 5, 6 and 7 are not affected by this issue as HTTP/2 support is not provided.\nThis flaw has no available mitigation for nodejs package. It will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9517", }, { category: "external", summary: "RHBZ#1741868", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1741868", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9517", url: "https://www.cve.org/CVERecord?id=CVE-2019-9517", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9517", }, { category: "external", summary: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", url: "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", }, { category: "external", summary: "https://kb.cert.org/vuls/id/605641/", url: "https://kb.cert.org/vuls/id/605641/", }, { category: "external", summary: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", url: "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/", }, ], release_date: "2019-08-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-11-20T16:14:21+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. After installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { category: "workaround", details: "The httpd version shipped with Red Hat Enterprise Linux 8 provides HTTP/2 support through mod_http2 package. While mod_http2 package is not updated, users can disable HTTP/2 support as mitigation action by executing the following steps:\n\n1. Stop httpd service:\n$ systemctl stop httpd\n\n2. Remove http/2 protocol support from configuration files:\n$ sed -i 's/\\(h2\\)\\|\\(h2c\\)//g' <httpd_config_file>\n\n3. Validate configuration files to make sure all syntax is valid:\n$ apachectl configtest\n\n4. Restart httpd service:\n$ systemctl start httpd", product_ids: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7.noarch", "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-jansson-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.46-22.redhat_1.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.src", "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7.x86_64", "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "HTTP/2: request for large response leads to denial of service", }, ], }
rhsa-2019_4126
Vulnerability from csaf_redhat
Published
2019-12-10 07:59
Modified
2024-11-15 03:19
Summary
Red Hat Security Advisory: httpd24-httpd security, bug fix, and enhancement update
Notes
Topic
An update for httpd24, httpd24-httpd, and httpd24-nghttp2 is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The Apache HTTP Server is a powerful, efficient, and extensible web server. The httpd24 packages provide a recent stable release of version 2.4 of the Apache HTTP Server, along with the mod_auth_kerb module.
Security Fix(es):
* httpd: mod_session_cookie does not respect expiry time (CVE-2018-17199)
* httpd: mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)
* httpd: null-pointer dereference in mod_remoteip (CVE-2019-10097)
* httpd: mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)
* httpd: URL normalization inconsistency (CVE-2019-0220)
* httpd: limited cross-site scripting in mod_proxy error page (CVE-2019-10092)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang (BZ#1669213)
* httpd can not be started with mod_md enabled (BZ#1673019)
* Rebuild metapackage with latest scl-utils (BZ#1696527)
* fix a regression introduced in r1740928 (BZ#1707636)
* duplicated cookie in Apache httpd with mod_session (BZ#1725922)
* Unexpected OCSP in proxy SSL connection (BZ#1744120)
Enhancement(s):
* RFE: updated collection for httpd 2.4 (BZ#1726706)
Additional Changes:
For detailed information on changes in this release, see the Red Hat Software Collections 3.4 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for httpd24, httpd24-httpd, and httpd24-nghttp2 is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The Apache HTTP Server is a powerful, efficient, and extensible web server. The httpd24 packages provide a recent stable release of version 2.4 of the Apache HTTP Server, along with the mod_auth_kerb module.\n\nSecurity Fix(es):\n\n* httpd: mod_session_cookie does not respect expiry time (CVE-2018-17199)\n\n* httpd: mod_auth_digest: access control bypass due to race condition (CVE-2019-0217)\n\n* httpd: null-pointer dereference in mod_remoteip (CVE-2019-10097)\n\n* httpd: mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)\n\n* httpd: URL normalization inconsistency (CVE-2019-0220)\n\n* httpd: limited cross-site scripting in mod_proxy error page (CVE-2019-10092)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang (BZ#1669213)\n\n* httpd can not be started with mod_md enabled (BZ#1673019)\n\n* Rebuild metapackage with latest scl-utils (BZ#1696527)\n\n* fix a regression introduced in r1740928 (BZ#1707636)\n\n* duplicated cookie in Apache httpd with mod_session (BZ#1725922)\n\n* Unexpected OCSP in proxy SSL connection (BZ#1744120)\n\nEnhancement(s):\n\n* RFE: updated collection for httpd 2.4 (BZ#1726706)\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Software Collections 3.4 Release Notes linked from the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2019:4126", url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_software_collections/3/html/3.4_release_notes/", url: "https://access.redhat.com/documentation/en-us/red_hat_software_collections/3/html/3.4_release_notes/", }, { category: "external", summary: "1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "1669213", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1669213", }, { category: "external", summary: "1673019", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1673019", }, { category: "external", summary: "1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "1695036", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695036", }, { category: "external", summary: "1696527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1696527", }, { category: "external", summary: "1707636", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1707636", }, { category: "external", summary: "1725922", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1725922", }, { category: "external", summary: "1743956", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743956", }, { category: "external", summary: "1743996", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743996", }, { category: "external", summary: "1744120", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1744120", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_4126.json", }, ], title: "Red Hat Security Advisory: httpd24-httpd security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-15T03:19:01+00:00", generator: { date: "2024-11-15T03:19:01+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2019:4126", initial_release_date: "2019-12-10T07:59:33+00:00", revision_history: [ { date: "2019-12-10T07:59:33+00:00", number: "1", summary: "Initial version", }, { date: "2019-12-10T07:59:33+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-15T03:19:01+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el6", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el6", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, { category: "product_name", name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product: { name: "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_software_collections:3::el7", }, }, }, ], category: "product_family", name: "Red Hat Software Collections", }, { branches: [ { category: "product_version", name: "httpd24-0:1.1-19.el6.x86_64", product: { name: "httpd24-0:1.1-19.el6.x86_64", product_id: "httpd24-0:1.1-19.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-build-0:1.1-19.el6.x86_64", product: { name: "httpd24-build-0:1.1-19.el6.x86_64", product_id: "httpd24-build-0:1.1-19.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-build@1.1-19.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-runtime-0:1.1-19.el6.x86_64", product: { name: "httpd24-runtime-0:1.1-19.el6.x86_64", product_id: "httpd24-runtime-0:1.1-19.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-runtime@1.1-19.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-scldevel-0:1.1-19.el6.x86_64", product: { name: "httpd24-scldevel-0:1.1-19.el6.x86_64", product_id: "httpd24-scldevel-0:1.1-19.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", product: { name: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", product_id: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", product: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", product_id: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", product: { name: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", product_id: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", product: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", product_id: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-httpd-0:2.4.34-15.el6.x86_64", product_id: "httpd24-httpd-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", product_id: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", product_id: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", product_id: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", product: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", product_id: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-mod_session-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-mod_session-0:2.4.34-15.el6.x86_64", product_id: "httpd24-mod_session-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", product: { name: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", product_id: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el6?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", product: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", product_id: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el6?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-0:1.1-19.el7.x86_64", product: { name: "httpd24-0:1.1-19.el7.x86_64", product_id: "httpd24-0:1.1-19.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-runtime-0:1.1-19.el7.x86_64", product: { name: "httpd24-runtime-0:1.1-19.el7.x86_64", product_id: "httpd24-runtime-0:1.1-19.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-runtime@1.1-19.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-scldevel-0:1.1-19.el7.x86_64", product: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64", product_id: "httpd24-scldevel-0:1.1-19.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", product: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", product_id: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", product: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", product_id: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", product: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", product_id: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", product: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", product_id: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64", product_id: "httpd24-httpd-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", product_id: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", product_id: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", product_id: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", product_id: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_md@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", product: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", product_id: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", product_id: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", product: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", product_id: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", product: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", product_id: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el7?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "httpd24-0:1.1-19.el6.src", product: { name: "httpd24-0:1.1-19.el6.src", product_id: "httpd24-0:1.1-19.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el6?arch=src", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el6.src", product: { name: "httpd24-nghttp2-0:1.7.1-8.el6.src", product_id: "httpd24-nghttp2-0:1.7.1-8.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el6?arch=src", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el6.src", product: { name: "httpd24-httpd-0:2.4.34-15.el6.src", product_id: "httpd24-httpd-0:2.4.34-15.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el6?arch=src", }, }, }, { category: "product_version", name: "httpd24-0:1.1-19.el7.src", product: { name: "httpd24-0:1.1-19.el7.src", product_id: "httpd24-0:1.1-19.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=src", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el7.src", product: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src", product_id: "httpd24-nghttp2-0:1.7.1-8.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=src", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el7.src", product: { name: "httpd24-httpd-0:2.4.34-15.el7.src", product_id: "httpd24-httpd-0:2.4.34-15.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", product: { name: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", product_id: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-manual@2.4.34-15.el6?arch=noarch", }, }, }, { category: "product_version", name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", product: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", product_id: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-manual@2.4.34-15.el7?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "httpd24-0:1.1-19.el7.ppc64le", product: { name: "httpd24-0:1.1-19.el7.ppc64le", product_id: "httpd24-0:1.1-19.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-runtime-0:1.1-19.el7.ppc64le", product: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le", product_id: "httpd24-runtime-0:1.1-19.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-runtime@1.1-19.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-scldevel-0:1.1-19.el7.ppc64le", product: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le", product_id: "httpd24-scldevel-0:1.1-19.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", product: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", product_id: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", product: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", product_id: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", product: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", product_id: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", product: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", product_id: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_md@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", product: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", product_id: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el7?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", product: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", product_id: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el7?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", product: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", product_id: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el7?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "httpd24-0:1.1-19.el7.s390x", product: { name: "httpd24-0:1.1-19.el7.s390x", product_id: "httpd24-0:1.1-19.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-runtime-0:1.1-19.el7.s390x", product: { name: "httpd24-runtime-0:1.1-19.el7.s390x", product_id: "httpd24-runtime-0:1.1-19.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-runtime@1.1-19.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-scldevel-0:1.1-19.el7.s390x", product: { name: "httpd24-scldevel-0:1.1-19.el7.s390x", product_id: "httpd24-scldevel-0:1.1-19.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", product: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", product_id: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", product: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", product_id: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", product: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", product_id: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", product: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", product_id: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el7.s390x", product: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x", product_id: "httpd24-httpd-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", product: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", product_id: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", product: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", product_id: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", product: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", product_id: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-mod_md-0:2.4.34-15.el7.s390x", product: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x", product_id: "httpd24-mod_md-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_md@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", product: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", product_id: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el7?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "httpd24-mod_session-0:2.4.34-15.el7.s390x", product: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x", product_id: "httpd24-mod_session-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el7?arch=s390x", }, }, }, { category: "product_version", name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", product: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", product_id: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el7?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", product: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", product_id: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el7?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "httpd24-0:1.1-19.el7.aarch64", product: { name: "httpd24-0:1.1-19.el7.aarch64", product_id: "httpd24-0:1.1-19.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24@1.1-19.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-runtime-0:1.1-19.el7.aarch64", product: { name: "httpd24-runtime-0:1.1-19.el7.aarch64", product_id: "httpd24-runtime-0:1.1-19.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-runtime@1.1-19.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-scldevel-0:1.1-19.el7.aarch64", product: { name: "httpd24-scldevel-0:1.1-19.el7.aarch64", product_id: "httpd24-scldevel-0:1.1-19.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-scldevel@1.1-19.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", product: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", product_id: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2@1.7.1-8.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", product: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", product_id: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-libnghttp2-devel@1.7.1-8.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", product: { name: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", product_id: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2@1.7.1-8.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", product: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", product_id: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-nghttp2-debuginfo@1.7.1-8.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-httpd-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-httpd-0:2.4.34-15.el7.aarch64", product_id: "httpd24-httpd-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", product_id: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", product_id: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", product_id: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", product_id: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_md@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", product: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", product_id: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-15.el7?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", product_id: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_session@2.4.34-15.el7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", product: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", product_id: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-15.el7?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", product: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", product_id: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-15.el7?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", }, product_reference: "httpd24-0:1.1-19.el6.src", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-build-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-build-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el6.src", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el6.src", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)", product_id: "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", }, product_reference: "httpd24-0:1.1-19.el6.src", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-build-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-build-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el6.src", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el6.noarch", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el6.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el6.src", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el6.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)", product_id: "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el6.x86_64", relates_to_product_reference: "6Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-Alt-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)", product_id: "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.5.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)", product_id: "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.6.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7)", product_id: "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4-7.7.Z", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Server-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", }, product_reference: "httpd24-0:1.1-19.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", }, product_reference: "httpd24-0:1.1-19.el7.src", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.src", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", }, product_reference: "httpd24-httpd-manual-0:2.4.34-15.el7.noarch", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_md-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_md-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_session-0:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_session-0:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", }, product_reference: "httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.src", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", }, product_reference: "httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-runtime-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", }, product_reference: "httpd24-runtime-0:1.1-19.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-runtime-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-runtime-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.aarch64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.ppc64le", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.s390x", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, { category: "default_component_of", full_product_name: { name: "httpd24-scldevel-0:1.1-19.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", }, product_reference: "httpd24-scldevel-0:1.1-19.el7.x86_64", relates_to_product_reference: "7Workstation-RHSCL-3.4", }, ], }, vulnerabilities: [ { cve: "CVE-2018-17189", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668497", }, ], notes: [ { category: "description", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: DoS via slow, unneeded request bodies", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "RHBZ#1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17189", url: "https://www.cve.org/CVERecord?id=CVE-2018-17189", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: DoS via slow, unneeded request bodies", }, { cve: "CVE-2018-17199", cwe: { id: "CWE-613", name: "Insufficient Session Expiration", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668493", }, ], notes: [ { category: "description", text: "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_session_cookie does not respect expiry time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17199", }, { category: "external", summary: "RHBZ#1668493", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668493", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17199", url: "https://www.cve.org/CVERecord?id=CVE-2018-17199", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17199", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_session_cookie does not respect expiry time", }, { cve: "CVE-2019-0217", cwe: { id: "CWE-284", name: "Improper Access Control", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695020", }, ], notes: [ { category: "description", text: "A race condition was found in mod_auth_digest when the web server was running in a threaded MPM configuration. It could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_auth_digest: access control bypass due to race condition", title: "Vulnerability summary", }, { category: "other", text: "Based on the the fact that digest authentication is rarely used in modern day web applications and httpd package shipped with Red Hat products do not ship threaded MPM configuration by default, this flaw has been rated as having Moderate level security impact. Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0217", }, { category: "external", summary: "RHBZ#1695020", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695020", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0217", url: "https://www.cve.org/CVERecord?id=CVE-2019-0217", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0217", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { category: "workaround", details: "This flaw only affects a threaded server configuration, so using the prefork MPM is an effective mitigation. In versions of httpd package shipped with Red Hat Enterprise Linux 7, the prefork MPM is the default configuration.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_auth_digest: access control bypass due to race condition", }, { cve: "CVE-2019-0220", cwe: { id: "CWE-41", name: "Improper Resolution of Path Equivalence", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695036", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.0 to 2.4.38. When the path component of a request URL contains multiple consecutive slashes ('/'), directives such as LocationMatch and RewriteRule must account for duplicates in regular expressions while other aspects of the servers processing will implicitly collapse them.", title: "Vulnerability description", }, { category: "summary", text: "httpd: URL normalization inconsistency", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This flaw has been rated as having a security impact of Low, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0220", }, { category: "external", summary: "RHBZ#1695036", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695036", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0220", url: "https://www.cve.org/CVERecord?id=CVE-2019-0220", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0220", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0220", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { category: "workaround", details: "This flaw can be mitigation by replacing multiple consecutive slashes, used in directives that match against the path component of the request URL with regular expressions.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "LOW", baseScore: 3.3, baseSeverity: "LOW", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: URL normalization inconsistency", }, { cve: "CVE-2019-10092", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743956", }, ], notes: [ { category: "description", text: "A cross-site scripting vulnerability was found in Apache httpd, affecting the mod_proxy error page. Under certain circumstances, a crafted link could inject content into the HTML displayed in the error page, potentially leading to client-side exploitation.", title: "Vulnerability description", }, { category: "summary", text: "httpd: limited cross-site scripting in mod_proxy error page", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10092", }, { category: "external", summary: "RHBZ#1743956", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743956", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10092", url: "https://www.cve.org/CVERecord?id=CVE-2019-10092", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10092", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10092", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { category: "workaround", details: "This flaw is only exploitable if Proxy* directives are used in Apache httpd configuration. The following command can be used to search for possible vulnerable configurations:\n\n grep -R '^\\s*Proxy' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_proxy.html", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.7, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: limited cross-site scripting in mod_proxy error page", }, { cve: "CVE-2019-10097", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743996", }, ], notes: [ { category: "description", text: "A vulnerability was discovered in Apache httpd, in mod_remoteip. A trusted proxy using the \"PROXY\" protocol could send specially crafted headers that can cause httpd to experience a stack buffer overflow or NULL pointer dereference, leading to a crash or other potential consequences.\r\n\r\nThis issue could only be exploited by configured trusted intermediate proxy servers. HTTP clients such as browsers could not exploit the vulnerability.", title: "Vulnerability description", }, { category: "summary", text: "httpd: null-pointer dereference in mod_remoteip", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10097", }, { category: "external", summary: "RHBZ#1743996", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743996", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10097", url: "https://www.cve.org/CVERecord?id=CVE-2019-10097", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10097", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10097", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-12-10T07:59:33+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { category: "workaround", details: "This flaw is only exploitable if RemoteIP* directives are used in Apache httpd configuration. The following command can be used to search for possible vulnerable configurations:\n\n grep -R '^\\s*RemoteIP' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_remoteip.html", product_ids: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.6, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Server-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.src", "6Workstation-RHSCL-3.4:httpd24-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-build-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.src", "6Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el6.noarch", "6Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.src", "6Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el6.x86_64", "6Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el6.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-Alt-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.5.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.6.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4-7.7.Z:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Server-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Server-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Server-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Server-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Server-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Server-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.src", "7Workstation-RHSCL-3.4:httpd24-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.src", "7Workstation-RHSCL-3.4:httpd24-httpd-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-debuginfo-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-devel-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-httpd-manual-0:2.4.34-15.el7.noarch", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-httpd-tools-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-libnghttp2-devel-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ldap-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_md-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_proxy_html-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_session-0:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-mod_ssl-1:2.4.34-15.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.src", "7Workstation-RHSCL-3.4:httpd24-nghttp2-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-nghttp2-debuginfo-0:1.7.1-8.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-runtime-0:1.1-19.el7.x86_64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.aarch64", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.ppc64le", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.s390x", "7Workstation-RHSCL-3.4:httpd24-scldevel-0:1.1-19.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: null-pointer dereference in mod_remoteip", }, ], }
rhsa-2020:4751
Vulnerability from csaf_redhat
Published
2020-11-04 01:44
Modified
2025-03-17 01:32
Summary
Red Hat Security Advisory: httpd:2.4 security, bug fix, and enhancement update
Notes
Topic
An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.
The following packages have been upgraded to a later upstream version: mod_http2 (1.15.7). (BZ#1814236)
Security Fix(es):
* httpd: memory corruption on early pushes (CVE-2019-10081)
* httpd: read-after-free in h2 connection shutdown (CVE-2019-10082)
* httpd: null-pointer dereference in mod_remoteip (CVE-2019-10097)
* httpd: mod_rewrite configurations vulnerable to open redirect (CVE-2020-1927)
* httpd: mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)
* httpd: mod_http2: read-after-free on a string compare (CVE-2019-0196)
* httpd: mod_http2: possible crash on late upgrade (CVE-2019-0197)
* httpd: limited cross-site scripting in mod_proxy error page (CVE-2019-10092)
* httpd: mod_rewrite potential open redirect (CVE-2019-10098)
* httpd: mod_proxy_ftp use of uninitialized value (CVE-2020-1934)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.\n\nThe following packages have been upgraded to a later upstream version: mod_http2 (1.15.7). (BZ#1814236)\n\nSecurity Fix(es):\n\n* httpd: memory corruption on early pushes (CVE-2019-10081)\n\n* httpd: read-after-free in h2 connection shutdown (CVE-2019-10082)\n\n* httpd: null-pointer dereference in mod_remoteip (CVE-2019-10097)\n\n* httpd: mod_rewrite configurations vulnerable to open redirect (CVE-2020-1927)\n\n* httpd: mod_http2: DoS via slow, unneeded request bodies (CVE-2018-17189)\n\n* httpd: mod_http2: read-after-free on a string compare (CVE-2019-0196)\n\n* httpd: mod_http2: possible crash on late upgrade (CVE-2019-0197)\n\n* httpd: limited cross-site scripting in mod_proxy error page (CVE-2019-10092)\n\n* httpd: mod_rewrite potential open redirect (CVE-2019-10098)\n\n* httpd: mod_proxy_ftp use of uninitialized value (CVE-2020-1934)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:4751", url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/", url: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/", }, { category: "external", summary: "1209162", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1209162", }, { category: "external", summary: "1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "1743956", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743956", }, { category: "external", summary: "1743959", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743959", }, { category: "external", summary: "1743966", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743966", }, { category: "external", summary: "1743974", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743974", }, { category: "external", summary: "1743996", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743996", }, { category: "external", summary: "1771847", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1771847", }, { category: "external", summary: "1814236", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1814236", }, { category: "external", summary: "1820761", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1820761", }, { category: "external", summary: "1820772", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1820772", }, { category: "external", summary: "1832844", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1832844", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4751.json", }, ], title: "Red Hat Security Advisory: httpd:2.4 security, bug fix, and enhancement update", tracking: { current_release_date: "2025-03-17T01:32:57+00:00", generator: { date: "2025-03-17T01:32:57+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2020:4751", initial_release_date: "2020-11-04T01:44:47+00:00", revision_history: [ { date: "2020-11-04T01:44:47+00:00", number: "1", summary: "Initial version", }, { date: "2020-11-04T01:44:47+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-17T01:32:57+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "httpd:2.4:8030020200818000036:30b713e6", product: { name: "httpd:2.4:8030020200818000036:30b713e6", product_id: "httpd:2.4:8030020200818000036:30b713e6", product_identification_helper: { purl: "pkg:rpmmod/redhat/httpd@2.4:8030020200818000036:30b713e6", }, }, }, { category: "product_version", name: "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product: { name: "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product_id: "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-filesystem@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=noarch", }, }, }, { category: "product_version", name: "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product: { name: "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product_id: "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-manual@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", product: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", product_id: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", product_identification_helper: { purl: "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=src", }, }, }, { category: "product_version", name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", product: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", product_id: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=src", }, }, }, { category: "product_version", name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", product: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", product_id: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=src&epoch=1", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debugsource@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-devel@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_id: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=x86_64", }, }, }, { category: "product_version", name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_id: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debuginfo@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=x86_64", }, }, }, { category: "product_version", name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_id: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debugsource@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=x86_64", }, }, }, { category: "product_version", name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_id: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_id: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debuginfo@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_id: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debugsource@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64", }, }, }, { category: "product_version", name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64&epoch=1", }, }, }, { category: "product_version", name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_id: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=x86_64&epoch=1", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debugsource@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-devel@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_id: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=s390x", }, }, }, { category: "product_version", name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_id: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debuginfo@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=s390x", }, }, }, { category: "product_version", name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_id: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debugsource@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=s390x", }, }, }, { category: "product_version", name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_id: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_id: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debuginfo@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_id: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debugsource@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x", }, }, }, { category: "product_version", name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x&epoch=1", }, }, }, { category: "product_version", name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_id: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=s390x&epoch=1", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debugsource@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-devel@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_id: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_id: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debuginfo@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_id: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debugsource@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_id: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_id: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debuginfo@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_id: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debugsource@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le", }, }, }, { category: "product_version", name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le&epoch=1", }, }, }, { category: "product_version", name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_id: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=ppc64le&epoch=1", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-debugsource@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-devel@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/httpd-tools-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_id: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=aarch64", }, }, }, { category: "product_version", name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_id: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debuginfo@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=aarch64", }, }, }, { category: "product_version", name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_id: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_http2-debugsource@1.15.7-2.module%2Bel8.3.0%2B7670%2B8bf57d29?arch=aarch64", }, }, }, { category: "product_version", name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ldap-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_id: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_id: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debuginfo@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_id: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_md-debugsource@2.0.8-8.module%2Bel8.3.0%2B6814%2B67d1e611?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_proxy_html-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_session-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64", }, }, }, { category: "product_version", name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64&epoch=1", }, }, }, { category: "product_version", name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_id: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/mod_ssl-debuginfo@2.4.37-30.module%2Bel8.3.0%2B7001%2B0766b9e7?arch=aarch64&epoch=1", }, }, }, ], category: "architecture", name: "aarch64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, product_reference: "httpd:2.4:8030020200818000036:30b713e6", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", }, product_reference: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", }, product_reference: "httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", }, product_reference: "httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", }, product_reference: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", }, product_reference: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", }, product_reference: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", }, product_reference: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", }, product_reference: "mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", }, product_reference: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", }, product_reference: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", }, product_reference: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", }, product_reference: "mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", }, product_reference: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", }, product_reference: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", }, product_reference: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", }, product_reference: "mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", }, product_reference: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", }, product_reference: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", }, product_reference: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", }, product_reference: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", }, product_reference: "mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", }, product_reference: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", }, product_reference: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", }, product_reference: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", }, product_reference: "mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", }, product_reference: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", }, product_reference: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", }, product_reference: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", }, product_reference: "mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", }, product_reference: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", }, product_reference: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", }, product_reference: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, { category: "default_component_of", full_product_name: { name: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64 as a component of httpd:2.4:8030020200818000036:30b713e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", }, product_reference: "mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", }, ], }, vulnerabilities: [ { cve: "CVE-2018-17189", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1668497", }, ], notes: [ { category: "description", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: DoS via slow, unneeded request bodies", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "RHBZ#1668497", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1668497", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-17189", url: "https://www.cve.org/CVERecord?id=CVE-2018-17189", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", }, ], release_date: "2019-01-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: DoS via slow, unneeded request bodies", }, { cve: "CVE-2019-0196", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695030", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.17 to 2.4.38. Using fuzzed network input, the http/2 request handling could be made to access freed memory in string comparison when determining the method of a request and thus process the request incorrectly.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: read-after-free on a string compare", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0196", }, { category: "external", summary: "RHBZ#1695030", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695030", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0196", url: "https://www.cve.org/CVERecord?id=CVE-2019-0196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0196", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: read-after-free on a string compare", }, { cve: "CVE-2019-0197", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2019-04-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1695042", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache HTTP Server 2.4.34 to 2.4.38. When HTTP/2 was enabled for a http: host or H2Upgrade was enabled for h2 on a https: host, an Upgrade request from http/1.1 to http/2 that was not the first request on a connection could lead to a misconfiguration and crash. Server that never enabled the h2 protocol or that only enabled it for https: and did not set \"H2Upgrade on\" are unaffected by this issue.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_http2: possible crash on late upgrade", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-0197", }, { category: "external", summary: "RHBZ#1695042", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1695042", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-0197", url: "https://www.cve.org/CVERecord?id=CVE-2019-0197", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-0197", }, { category: "external", summary: "http://www.apache.org/dist/httpd/CHANGES_2.4", url: "http://www.apache.org/dist/httpd/CHANGES_2.4", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-02-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 4.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_http2: possible crash on late upgrade", }, { cve: "CVE-2019-10081", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743966", }, ], notes: [ { category: "description", text: "A vulnerability was found in Apache httpd, in mod_http2. Under certain circumstances, HTTP/2 early pushes could lead to memory corruption, causing a server to crash.", title: "Vulnerability description", }, { category: "summary", text: "httpd: memory corruption on early pushes", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10081", }, { category: "external", summary: "RHBZ#1743966", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743966", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10081", url: "https://www.cve.org/CVERecord?id=CVE-2019-10081", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10081", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10081", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "workaround", details: "This flaw is only exploitable if Apache httpd is configured to respond to HTTP/2 requests, which is done by including \"h2\" or \"h2c\" in the \"Protocols\" list in a configuration file. The following command can be used to search for possible vulnerable configurations: \n\n grep -R '^\\s*Protocols\\>.*\\<h2\\>' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_http2.html", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: memory corruption on early pushes", }, { cve: "CVE-2019-10082", discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743974", }, ], notes: [ { category: "description", text: "A read-after-free vulnerability was discovered in Apache httpd, in mod_http2. A specially crafted http/2 client session could cause the server to read memory that was previously freed during connection shutdown, potentially leading to a crash.", title: "Vulnerability description", }, { category: "summary", text: "httpd: read-after-free in h2 connection shutdown", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10082", }, { category: "external", summary: "RHBZ#1743974", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743974", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10082", url: "https://www.cve.org/CVERecord?id=CVE-2019-10082", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10082", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10082", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "workaround", details: "This flaw is only exploitable if Apache httpd is configured to respond to HTTP/2 requests, which is done by including \"h2\" or \"h2c\" in the \"Protocols\" list in a configuration file. The following command can be used to search for possible vulnerable configurations: \n\n grep -R '^\\s*Protocols\\>.*\\<h2\\>' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_http2.html", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: read-after-free in h2 connection shutdown", }, { cve: "CVE-2019-10092", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743956", }, ], notes: [ { category: "description", text: "A cross-site scripting vulnerability was found in Apache httpd, affecting the mod_proxy error page. Under certain circumstances, a crafted link could inject content into the HTML displayed in the error page, potentially leading to client-side exploitation.", title: "Vulnerability description", }, { category: "summary", text: "httpd: limited cross-site scripting in mod_proxy error page", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10092", }, { category: "external", summary: "RHBZ#1743956", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743956", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10092", url: "https://www.cve.org/CVERecord?id=CVE-2019-10092", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10092", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10092", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "workaround", details: "This flaw is only exploitable if Proxy* directives are used in Apache httpd configuration. The following command can be used to search for possible vulnerable configurations:\n\n grep -R '^\\s*Proxy' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_proxy.html", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.7, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: limited cross-site scripting in mod_proxy error page", }, { cve: "CVE-2019-10097", cwe: { id: "CWE-416", name: "Use After Free", }, discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743996", }, ], notes: [ { category: "description", text: "A vulnerability was discovered in Apache httpd, in mod_remoteip. A trusted proxy using the \"PROXY\" protocol could send specially crafted headers that can cause httpd to experience a stack buffer overflow or NULL pointer dereference, leading to a crash or other potential consequences.\r\n\r\nThis issue could only be exploited by configured trusted intermediate proxy servers. HTTP clients such as browsers could not exploit the vulnerability.", title: "Vulnerability description", }, { category: "summary", text: "httpd: null-pointer dereference in mod_remoteip", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10097", }, { category: "external", summary: "RHBZ#1743996", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743996", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10097", url: "https://www.cve.org/CVERecord?id=CVE-2019-10097", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10097", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10097", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "workaround", details: "This flaw is only exploitable if RemoteIP* directives are used in Apache httpd configuration. The following command can be used to search for possible vulnerable configurations:\n\n grep -R '^\\s*RemoteIP' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_remoteip.html", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.6, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: null-pointer dereference in mod_remoteip", }, { cve: "CVE-2019-10098", discovery_date: "2019-08-20T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1743959", }, ], notes: [ { category: "description", text: "A vulnerability was discovered in Apache httpd, in mod_rewrite. Certain self-referential mod_rewrite rules could be fooled by encoded newlines, causing them to redirect to an unexpected location. An attacker could abuse this flaw in a phishing attack or as part of a client-side attack on browsers.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_rewrite potential open redirect", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-10098", }, { category: "external", summary: "RHBZ#1743959", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1743959", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-10098", url: "https://www.cve.org/CVERecord?id=CVE-2019-10098", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-10098", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10098", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2019-08-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, { category: "workaround", details: "This flaw requires the use of certain Rewrite configuration directives. The following command can be used to search for possible vulnerable configurations:\n\n grep -R '^\\s*Rewrite' /etc/httpd/\n\nSee https://httpd.apache.org/docs/2.4/mod/mod_rewrite.html", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 3.7, baseSeverity: "LOW", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.0", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_rewrite potential open redirect", }, { cve: "CVE-2020-1927", cwe: { id: "CWE-601", name: "URL Redirection to Untrusted Site ('Open Redirect')", }, discovery_date: "2020-04-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1820761", }, ], notes: [ { category: "description", text: "A flaw was found in Apache HTTP Server (httpd) versions 2.4.0 to 2.4.41. Redirects configured with mod_rewrite that were intended to be self-referential might be fooled by encoded newlines and redirected instead to an unexpected URL within the request URL.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_rewrite configurations vulnerable to open redirect", title: "Vulnerability summary", }, { category: "other", text: "This issue only affects httpd versions between 2.4.0 and 2.4.41. Therefore Red Hat Enterprise Linux 5 and 6 are not affected by this flaw.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-1927", }, { category: "external", summary: "RHBZ#1820761", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1820761", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-1927", url: "https://www.cve.org/CVERecord?id=CVE-2020-1927", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-1927", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-1927", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2020-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.1, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "httpd: mod_rewrite configurations vulnerable to open redirect", }, { cve: "CVE-2020-1934", cwe: { id: "CWE-456", name: "Missing Initialization of a Variable", }, discovery_date: "2020-04-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1820772", }, ], notes: [ { category: "description", text: "A flaw was found in Apache's HTTP server (httpd) .The mod_proxy_ftp module may use uninitialized memory with proxying to a malicious FTP server. The highest threat from this vulnerability is to data confidentiality.", title: "Vulnerability description", }, { category: "summary", text: "httpd: mod_proxy_ftp use of uninitialized value", title: "Vulnerability summary", }, { category: "other", text: "This flaw is caused by use of an uninitialized memory variable. Practically this has no impact, but in some corner cases it is possible that the contents of this variable could be read by a remote process, causing loss of confidentiality as a result of this. There is no evidence of code execution.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-1934", }, { category: "external", summary: "RHBZ#1820772", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1820772", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-1934", url: "https://www.cve.org/CVERecord?id=CVE-2020-1934", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-1934", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-1934", }, { category: "external", summary: "https://httpd.apache.org/security/vulnerabilities_24.html", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, ], release_date: "2020-04-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:44:47+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.", product_ids: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4751", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 3.7, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-debugsource-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-devel-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-filesystem-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-manual-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.noarch", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:httpd-tools-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debuginfo-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_http2-debugsource-0:1.15.7-2.module+el8.3.0+7670+8bf57d29.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ldap-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.src", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debuginfo-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_md-debugsource-1:2.0.8-8.module+el8.3.0+6814+67d1e611.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_proxy_html-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_session-debuginfo-0:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.aarch64", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.ppc64le", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.s390x", "AppStream-8.3.0.GA:httpd:2.4:8030020200818000036:30b713e6:mod_ssl-debuginfo-1:2.4.37-30.module+el8.3.0+7001+0766b9e7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "httpd: mod_proxy_ftp use of uninitialized value", }, ], }
ghsa-xcwr-pcwv-7gm8
Vulnerability from github
Published
2022-05-13 01:08
Modified
2022-05-13 01:08
Severity ?
Details
In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.
{ affected: [], aliases: [ "CVE-2018-17189", ], database_specific: { cwe_ids: [ "CWE-400", ], github_reviewed: false, github_reviewed_at: null, nvd_published_at: "2019-01-30T22:29:00Z", severity: "MODERATE", }, details: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", id: "GHSA-xcwr-pcwv-7gm8", modified: "2022-05-13T01:08:56Z", published: "2022-05-13T01:08:56Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-17189", }, { type: "WEB", url: "https://www.tenable.com/security/tns-2019-09", }, { type: "WEB", url: "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", }, { type: "WEB", url: "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", }, { type: "WEB", url: "https://www.oracle.com/security-alerts/cpujan2020.html", }, { type: "WEB", url: "https://www.debian.org/security/2019/dsa-4422", }, { type: "WEB", url: "https://usn.ubuntu.com/3937-1", }, { type: "WEB", url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03950en_us", }, { type: "WEB", url: "https://security.netapp.com/advisory/ntap-20190125-0001", }, { type: "WEB", url: "https://security.gentoo.org/glsa/201903-21", }, { type: "WEB", url: "https://seclists.org/bugtraq/2019/Apr/5", }, { type: "WEB", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U7N3DUEBFVGQWQEME5HTPTTKDHGHBAC6", }, { type: "WEB", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IY7SJQOO3PYFVINZW6H5EK4EZ3HSGZNM", }, { type: "WEB", url: "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E", }, { type: "WEB", url: "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9@%3Ccvs.httpd.apache.org%3E", }, { type: "WEB", url: "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234@%3Ccvs.httpd.apache.org%3E", }, { type: "WEB", url: "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538@%3Ccvs.httpd.apache.org%3E", }, { type: "WEB", url: "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f@%3Ccvs.httpd.apache.org%3E", }, { type: "WEB", url: "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a@%3Ccvs.httpd.apache.org%3E", }, { type: "WEB", url: "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E", }, { type: "WEB", url: "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d@%3Ccvs.httpd.apache.org%3E", }, { type: "WEB", url: "https://lists.apache.org/thread.html/r15f9aa4427581a1aecb4063f1b4b983511ae1c9935e2a0a6876dad3c@%3Ccvs.httpd.apache.org%3E", }, { type: "WEB", url: "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf@%3Ccvs.httpd.apache.org%3E", }, { type: "WEB", url: "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830@%3Ccvs.httpd.apache.org%3E", }, { type: "WEB", url: "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba@%3Ccvs.httpd.apache.org%3E", }, { type: "WEB", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, { type: "WEB", url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { type: "WEB", url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { type: "WEB", url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { type: "WEB", url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { type: "WEB", url: "http://www.securityfocus.com/bid/106685", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", type: "CVSS_V3", }, ], }
opensuse-su-2019:0296-1
Vulnerability from csaf_opensuse
Published
2019-03-23 11:11
Modified
2019-03-23 11:11
Summary
Security update for apache2
Notes
Title of the patch
Security update for apache2
Description of the patch
This update for apache2 fixes the following issues:
Security issues fixed:
- CVE-2018-17189: Fixed a denial of service in mod_http2, via slow and unneeded request bodies (bsc#1122838)
- CVE-2018-17199: Fixed that mod_session_cookie did not respect expiry time (bsc#1122839)
Non-security issue fixed:
- sysconfig.d is not created anymore if it already exists (bsc#1121086)
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames
openSUSE-2019-296
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for apache2", title: "Title of the patch", }, { category: "description", text: "This update for apache2 fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2018-17189: Fixed a denial of service in mod_http2, via slow and unneeded request bodies (bsc#1122838)\n- CVE-2018-17199: Fixed that mod_session_cookie did not respect expiry time (bsc#1122839)\n\nNon-security issue fixed:\n\n- sysconfig.d is not created anymore if it already exists (bsc#1121086)\n\nThis update was imported from the SUSE:SLE-15:Update update project.", title: "Description of the patch", }, { category: "details", text: "openSUSE-2019-296", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_0296-1.json", }, { category: "self", summary: "URL for openSUSE-SU-2019:0296-1", url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/AROOBQ53ZDZ2TV5OILN4IH6WGBD27OJ6/#AROOBQ53ZDZ2TV5OILN4IH6WGBD27OJ6", }, { category: "self", summary: "E-Mail link for openSUSE-SU-2019:0296-1", url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/AROOBQ53ZDZ2TV5OILN4IH6WGBD27OJ6/#AROOBQ53ZDZ2TV5OILN4IH6WGBD27OJ6", }, { category: "self", summary: "SUSE Bug 1121086", url: "https://bugzilla.suse.com/1121086", }, { category: "self", summary: "SUSE Bug 1122838", url: "https://bugzilla.suse.com/1122838", }, { category: "self", summary: "SUSE Bug 1122839", url: "https://bugzilla.suse.com/1122839", }, { category: "self", summary: "SUSE CVE CVE-2018-17189 page", url: "https://www.suse.com/security/cve/CVE-2018-17189/", }, { category: "self", summary: "SUSE CVE CVE-2018-17199 page", url: "https://www.suse.com/security/cve/CVE-2018-17199/", }, ], title: "Security update for apache2", tracking: { current_release_date: "2019-03-23T11:11:28Z", generator: { date: "2019-03-23T11:11:28Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2019:0296-1", initial_release_date: "2019-03-23T11:11:28Z", revision_history: [ { date: "2019-03-23T11:11:28Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "apache2-2.4.33-lp150.2.9.1.i586", product: { name: "apache2-2.4.33-lp150.2.9.1.i586", product_id: "apache2-2.4.33-lp150.2.9.1.i586", }, }, { category: "product_version", name: "apache2-devel-2.4.33-lp150.2.9.1.i586", product: { name: "apache2-devel-2.4.33-lp150.2.9.1.i586", product_id: "apache2-devel-2.4.33-lp150.2.9.1.i586", }, }, { category: "product_version", name: "apache2-event-2.4.33-lp150.2.9.1.i586", product: { name: "apache2-event-2.4.33-lp150.2.9.1.i586", product_id: "apache2-event-2.4.33-lp150.2.9.1.i586", }, }, { category: "product_version", name: "apache2-example-pages-2.4.33-lp150.2.9.1.i586", product: { name: "apache2-example-pages-2.4.33-lp150.2.9.1.i586", product_id: "apache2-example-pages-2.4.33-lp150.2.9.1.i586", }, }, { category: "product_version", name: "apache2-prefork-2.4.33-lp150.2.9.1.i586", product: { name: "apache2-prefork-2.4.33-lp150.2.9.1.i586", product_id: "apache2-prefork-2.4.33-lp150.2.9.1.i586", }, }, { category: "product_version", name: "apache2-utils-2.4.33-lp150.2.9.1.i586", product: { name: "apache2-utils-2.4.33-lp150.2.9.1.i586", product_id: "apache2-utils-2.4.33-lp150.2.9.1.i586", }, }, { category: "product_version", name: "apache2-worker-2.4.33-lp150.2.9.1.i586", product: { name: "apache2-worker-2.4.33-lp150.2.9.1.i586", product_id: "apache2-worker-2.4.33-lp150.2.9.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "apache2-doc-2.4.33-lp150.2.9.1.noarch", product: { name: "apache2-doc-2.4.33-lp150.2.9.1.noarch", product_id: "apache2-doc-2.4.33-lp150.2.9.1.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "apache2-2.4.33-lp150.2.9.1.x86_64", product: { name: "apache2-2.4.33-lp150.2.9.1.x86_64", product_id: "apache2-2.4.33-lp150.2.9.1.x86_64", }, }, { category: "product_version", name: "apache2-devel-2.4.33-lp150.2.9.1.x86_64", product: { name: "apache2-devel-2.4.33-lp150.2.9.1.x86_64", product_id: "apache2-devel-2.4.33-lp150.2.9.1.x86_64", }, }, { category: "product_version", name: "apache2-event-2.4.33-lp150.2.9.1.x86_64", product: { name: "apache2-event-2.4.33-lp150.2.9.1.x86_64", product_id: "apache2-event-2.4.33-lp150.2.9.1.x86_64", }, }, { category: "product_version", name: "apache2-example-pages-2.4.33-lp150.2.9.1.x86_64", product: { name: "apache2-example-pages-2.4.33-lp150.2.9.1.x86_64", product_id: "apache2-example-pages-2.4.33-lp150.2.9.1.x86_64", }, }, { category: "product_version", name: "apache2-prefork-2.4.33-lp150.2.9.1.x86_64", product: { name: "apache2-prefork-2.4.33-lp150.2.9.1.x86_64", product_id: "apache2-prefork-2.4.33-lp150.2.9.1.x86_64", }, }, { category: "product_version", name: "apache2-utils-2.4.33-lp150.2.9.1.x86_64", product: { name: "apache2-utils-2.4.33-lp150.2.9.1.x86_64", product_id: "apache2-utils-2.4.33-lp150.2.9.1.x86_64", }, }, { category: "product_version", name: "apache2-worker-2.4.33-lp150.2.9.1.x86_64", product: { name: "apache2-worker-2.4.33-lp150.2.9.1.x86_64", product_id: "apache2-worker-2.4.33-lp150.2.9.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "openSUSE Leap 15.0", product: { name: "openSUSE Leap 15.0", product_id: "openSUSE Leap 15.0", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.0", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "apache2-2.4.33-lp150.2.9.1.i586 as component of openSUSE Leap 15.0", product_id: "openSUSE Leap 15.0:apache2-2.4.33-lp150.2.9.1.i586", }, product_reference: "apache2-2.4.33-lp150.2.9.1.i586", relates_to_product_reference: "openSUSE Leap 15.0", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.33-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0", product_id: "openSUSE Leap 15.0:apache2-2.4.33-lp150.2.9.1.x86_64", }, product_reference: "apache2-2.4.33-lp150.2.9.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.0", }, { category: "default_component_of", full_product_name: { name: "apache2-devel-2.4.33-lp150.2.9.1.i586 as component of openSUSE Leap 15.0", product_id: "openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.9.1.i586", }, product_reference: "apache2-devel-2.4.33-lp150.2.9.1.i586", relates_to_product_reference: "openSUSE Leap 15.0", }, { category: "default_component_of", full_product_name: { name: "apache2-devel-2.4.33-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0", product_id: "openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.9.1.x86_64", }, product_reference: "apache2-devel-2.4.33-lp150.2.9.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.0", }, { category: "default_component_of", full_product_name: { name: "apache2-doc-2.4.33-lp150.2.9.1.noarch as component of openSUSE Leap 15.0", product_id: "openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.9.1.noarch", }, product_reference: "apache2-doc-2.4.33-lp150.2.9.1.noarch", relates_to_product_reference: "openSUSE Leap 15.0", }, { category: "default_component_of", full_product_name: { name: "apache2-event-2.4.33-lp150.2.9.1.i586 as component of openSUSE Leap 15.0", product_id: "openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.9.1.i586", }, product_reference: "apache2-event-2.4.33-lp150.2.9.1.i586", relates_to_product_reference: "openSUSE Leap 15.0", }, { category: "default_component_of", full_product_name: { name: "apache2-event-2.4.33-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0", product_id: "openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.9.1.x86_64", }, product_reference: "apache2-event-2.4.33-lp150.2.9.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.0", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.33-lp150.2.9.1.i586 as component of openSUSE Leap 15.0", product_id: "openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.9.1.i586", }, product_reference: "apache2-example-pages-2.4.33-lp150.2.9.1.i586", relates_to_product_reference: "openSUSE Leap 15.0", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.33-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0", product_id: "openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.9.1.x86_64", }, product_reference: "apache2-example-pages-2.4.33-lp150.2.9.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.0", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.33-lp150.2.9.1.i586 as component of openSUSE Leap 15.0", product_id: "openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.9.1.i586", }, product_reference: "apache2-prefork-2.4.33-lp150.2.9.1.i586", relates_to_product_reference: "openSUSE Leap 15.0", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.33-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0", product_id: "openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.9.1.x86_64", }, product_reference: "apache2-prefork-2.4.33-lp150.2.9.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.0", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.33-lp150.2.9.1.i586 as component of openSUSE Leap 15.0", product_id: "openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.9.1.i586", }, product_reference: "apache2-utils-2.4.33-lp150.2.9.1.i586", relates_to_product_reference: "openSUSE Leap 15.0", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.33-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0", product_id: "openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.9.1.x86_64", }, product_reference: "apache2-utils-2.4.33-lp150.2.9.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.0", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.33-lp150.2.9.1.i586 as component of openSUSE Leap 15.0", product_id: "openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.9.1.i586", }, product_reference: "apache2-worker-2.4.33-lp150.2.9.1.i586", relates_to_product_reference: "openSUSE Leap 15.0", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.33-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0", product_id: "openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.9.1.x86_64", }, product_reference: "apache2-worker-2.4.33-lp150.2.9.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.0", }, ], }, vulnerabilities: [ { cve: "CVE-2018-17189", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2018-17189", }, ], notes: [ { category: "general", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Leap 15.0:apache2-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.9.1.noarch", "openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2018-17189", url: "https://www.suse.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "SUSE Bug 1122838 for CVE-2018-17189", url: "https://bugzilla.suse.com/1122838", }, { category: "external", summary: "SUSE Bug 1125965 for CVE-2018-17189", url: "https://bugzilla.suse.com/1125965", }, { category: "external", summary: "SUSE Bug 1126894 for CVE-2018-17189", url: "https://bugzilla.suse.com/1126894", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Leap 15.0:apache2-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.9.1.noarch", "openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "openSUSE Leap 15.0:apache2-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.9.1.noarch", "openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2019-03-23T11:11:28Z", details: "moderate", }, ], title: "CVE-2018-17189", }, { cve: "CVE-2018-17199", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2018-17199", }, ], notes: [ { category: "general", text: "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Leap 15.0:apache2-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.9.1.noarch", "openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2018-17199", url: "https://www.suse.com/security/cve/CVE-2018-17199", }, { category: "external", summary: "SUSE Bug 1122838 for CVE-2018-17199", url: "https://bugzilla.suse.com/1122838", }, { category: "external", summary: "SUSE Bug 1122839 for CVE-2018-17199", url: "https://bugzilla.suse.com/1122839", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Leap 15.0:apache2-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.9.1.noarch", "openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "openSUSE Leap 15.0:apache2-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-devel-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-doc-2.4.33-lp150.2.9.1.noarch", "openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-event-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-example-pages-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-prefork-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-utils-2.4.33-lp150.2.9.1.x86_64", "openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.9.1.i586", "openSUSE Leap 15.0:apache2-worker-2.4.33-lp150.2.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2019-03-23T11:11:28Z", details: "moderate", }, ], title: "CVE-2018-17199", }, ], }
gsd-2018-17189
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.
Aliases
Aliases
{ GSD: { alias: "CVE-2018-17189", description: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", id: "GSD-2018-17189", references: [ "https://www.suse.com/security/cve/CVE-2018-17189.html", "https://www.debian.org/security/2019/dsa-4422", "https://access.redhat.com/errata/RHSA-2020:4751", "https://access.redhat.com/errata/RHSA-2019:4126", "https://access.redhat.com/errata/RHSA-2019:3935", "https://access.redhat.com/errata/RHSA-2019:3933", "https://access.redhat.com/errata/RHSA-2019:3932", "https://ubuntu.com/security/CVE-2018-17189", "https://advisories.mageia.org/CVE-2018-17189.html", "https://security.archlinux.org/CVE-2018-17189", "https://alas.aws.amazon.com/cve/html/CVE-2018-17189.html", "https://linux.oracle.com/cve/CVE-2018-17189.html", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2018-17189", ], details: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", id: "GSD-2018-17189", modified: "2023-12-13T01:22:30.713174Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "security@apache.org", DATE_PUBLIC: "2019-01-22T00:00:00", ID: "CVE-2018-17189", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Apache HTTP Server", version: { version_data: [ { version_value: "2.4.17 to 2.4.37", }, ], }, }, ], }, vendor_name: "Apache Software Foundation", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "mod_http2, DoS via slow request bodies", }, ], }, ], }, references: { reference_data: [ { name: "https://httpd.apache.org/security/vulnerabilities_24.html", refsource: "CONFIRM", url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, { name: "106685", refsource: "BID", url: "http://www.securityfocus.com/bid/106685", }, { name: "https://security.netapp.com/advisory/ntap-20190125-0001/", refsource: "CONFIRM", url: "https://security.netapp.com/advisory/ntap-20190125-0001/", }, { name: "FEDORA-2019-0300c36537", refsource: "FEDORA", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U7N3DUEBFVGQWQEME5HTPTTKDHGHBAC6/", }, { name: "FEDORA-2019-133a8a7cb5", refsource: "FEDORA", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IY7SJQOO3PYFVINZW6H5EK4EZ3HSGZNM/", }, { name: "GLSA-201903-21", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201903-21", }, { name: "20190403 [SECURITY] [DSA 4422-1] apache2 security update", refsource: "BUGTRAQ", url: "https://seclists.org/bugtraq/2019/Apr/5", }, { name: "USN-3937-1", refsource: "UBUNTU", url: "https://usn.ubuntu.com/3937-1/", }, { name: "DSA-4422", refsource: "DEBIAN", url: "https://www.debian.org/security/2019/dsa-4422", }, { name: "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", refsource: "MISC", url: "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", }, { name: "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", refsource: "MISC", url: "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", }, { name: "[httpd-cvs] 20190815 svn commit: r1048743 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", url: "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20190815 svn commit: r1048742 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", url: "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830@%3Ccvs.httpd.apache.org%3E", }, { name: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03950en_us", refsource: "CONFIRM", url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03950en_us", }, { name: "RHSA-2019:3933", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { name: "RHSA-2019:3935", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { name: "RHSA-2019:3932", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { name: "RHSA-2019:4126", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { name: "https://www.tenable.com/security/tns-2019-09", refsource: "CONFIRM", url: "https://www.tenable.com/security/tns-2019-09", }, { name: "https://www.oracle.com/security-alerts/cpujan2020.html", refsource: "MISC", url: "https://www.oracle.com/security-alerts/cpujan2020.html", }, { name: "[httpd-cvs] 20200401 svn commit: r1058586 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", url: "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20200401 svn commit: r1058587 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", url: "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", refsource: "MLIST", url: "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073143 [3/3] - in /websites/staging/httpd/trunk/content: ./ security/", refsource: "MLIST", url: "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073140 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", url: "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073139 [11/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", refsource: "MLIST", url: "https://lists.apache.org/thread.html/r15f9aa4427581a1aecb4063f1b4b983511ae1c9935e2a0a6876dad3c@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1888194 [12/13] - /httpd/site/trunk/content/security/json/", refsource: "MLIST", url: "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", refsource: "MLIST", url: "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073149 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", refsource: "MLIST", url: "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210606 svn commit: r1075470 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", url: "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d@%3Ccvs.httpd.apache.org%3E", }, ], }, }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:apache:http_server:2.4.17:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:apache:http_server:2.4.18:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:apache:http_server:2.4.20:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:apache:http_server:2.4.23:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:apache:http_server:2.4.25:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:apache:http_server:2.4.26:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:apache:http_server:2.4.27:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:apache:http_server:2.4.28:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:apache:http_server:2.4.29:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:apache:http_server:2.4.30:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:apache:http_server:2.4.33:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:apache:http_server:2.4.34:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:apache:http_server:2.4.35:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:apache:http_server:2.4.37:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:netapp:santricity_cloud_connector:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:netapp:storage_automation_store:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.3:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:oracle:hospitality_guest_access:4.2.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:oracle:hospitality_guest_access:4.2.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:oracle:retail_xstore_point_of_service:7.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:oracle:retail_xstore_point_of_service:7.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:oracle:sun_zfs_storage_appliance_kit:8.8.6:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:redhat:jboss_core_services:1.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "security@apache.org", ID: "CVE-2018-17189", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "CWE-400", }, ], }, ], }, references: { reference_data: [ { name: "https://httpd.apache.org/security/vulnerabilities_24.html", refsource: "CONFIRM", tags: [ "Vendor Advisory", ], url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, { name: "https://security.netapp.com/advisory/ntap-20190125-0001/", refsource: "CONFIRM", tags: [ "Third Party Advisory", ], url: "https://security.netapp.com/advisory/ntap-20190125-0001/", }, { name: "106685", refsource: "BID", tags: [ "Third Party Advisory", "VDB Entry", ], url: "http://www.securityfocus.com/bid/106685", }, { name: "FEDORA-2019-0300c36537", refsource: "FEDORA", tags: [ "Third Party Advisory", ], url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U7N3DUEBFVGQWQEME5HTPTTKDHGHBAC6/", }, { name: "FEDORA-2019-133a8a7cb5", refsource: "FEDORA", tags: [ "Third Party Advisory", ], url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IY7SJQOO3PYFVINZW6H5EK4EZ3HSGZNM/", }, { name: "GLSA-201903-21", refsource: "GENTOO", tags: [ "Third Party Advisory", ], url: "https://security.gentoo.org/glsa/201903-21", }, { name: "20190403 [SECURITY] [DSA 4422-1] apache2 security update", refsource: "BUGTRAQ", tags: [ "Mailing List", "Issue Tracking", "Third Party Advisory", ], url: "https://seclists.org/bugtraq/2019/Apr/5", }, { name: "USN-3937-1", refsource: "UBUNTU", tags: [ "Third Party Advisory", ], url: "https://usn.ubuntu.com/3937-1/", }, { name: "DSA-4422", refsource: "DEBIAN", tags: [ "Third Party Advisory", ], url: "https://www.debian.org/security/2019/dsa-4422", }, { name: "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", refsource: "MISC", tags: [ "Third Party Advisory", ], url: "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", }, { name: "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", refsource: "MISC", tags: [ "Third Party Advisory", ], url: "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", }, { name: "[httpd-cvs] 20190815 svn commit: r1048743 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", tags: [ "Mailing List", "Vendor Advisory", ], url: "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20190815 svn commit: r1048742 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", tags: [ "Mailing List", "Vendor Advisory", ], url: "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830@%3Ccvs.httpd.apache.org%3E", }, { name: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03950en_us", refsource: "CONFIRM", tags: [ "Third Party Advisory", ], url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03950en_us", }, { name: "RHSA-2019:3933", refsource: "REDHAT", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { name: "RHSA-2019:3935", refsource: "REDHAT", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { name: "RHSA-2019:3932", refsource: "REDHAT", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { name: "RHSA-2019:4126", refsource: "REDHAT", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { name: "https://www.tenable.com/security/tns-2019-09", refsource: "CONFIRM", tags: [ "Third Party Advisory", ], url: "https://www.tenable.com/security/tns-2019-09", }, { name: "https://www.oracle.com/security-alerts/cpujan2020.html", refsource: "MISC", tags: [ "Third Party Advisory", ], url: "https://www.oracle.com/security-alerts/cpujan2020.html", }, { name: "[httpd-cvs] 20200401 svn commit: r1058586 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", tags: [ "Mailing List", "Vendor Advisory", ], url: "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20200401 svn commit: r1058587 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", tags: [ "Mailing List", "Vendor Advisory", ], url: "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073140 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", tags: [ "Mailing List", "Vendor Advisory", ], url: "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073139 [11/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", refsource: "MLIST", tags: [ "Mailing List", "Vendor Advisory", ], url: "https://lists.apache.org/thread.html/r15f9aa4427581a1aecb4063f1b4b983511ae1c9935e2a0a6876dad3c@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/", refsource: "MLIST", tags: [ "Mailing List", "Vendor Advisory", ], url: "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073143 [3/3] - in /websites/staging/httpd/trunk/content: ./ security/", refsource: "MLIST", tags: [ "Mailing List", "Vendor Advisory", ], url: "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", refsource: "MLIST", tags: [ "Mailing List", "Vendor Advisory", ], url: "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1073149 [12/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/", refsource: "MLIST", tags: [ "Mailing List", "Vendor Advisory", ], url: "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210606 svn commit: r1075470 [4/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html", refsource: "MLIST", tags: [ "Mailing List", "Vendor Advisory", ], url: "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d@%3Ccvs.httpd.apache.org%3E", }, { name: "[httpd-cvs] 20210330 svn commit: r1888194 [12/13] - /httpd/site/trunk/content/security/json/", refsource: "MLIST", tags: [ "Mailing List", "Vendor Advisory", ], url: "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538@%3Ccvs.httpd.apache.org%3E", }, ], }, }, impact: { baseMetricV2: { acInsufInfo: false, cvssV2: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 5, confidentialityImpact: "NONE", integrityImpact: "NONE", vectorString: "AV:N/AC:L/Au:N/C:N/I:N/A:P", version: "2.0", }, exploitabilityScore: 10, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "MEDIUM", userInteractionRequired: false, }, baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 1.4, }, }, lastModifiedDate: "2021-07-06T16:39Z", publishedDate: "2019-01-30T22:29Z", }, }, }
suse-su-2019:0498-1
Vulnerability from csaf_suse
Published
2019-02-26 15:44
Modified
2019-02-26 15:44
Summary
Security update for apache2
Notes
Title of the patch
Security update for apache2
Description of the patch
This update for apache2 fixes the following issues:
Security issues fixed:
- CVE-2018-17189: Fixed a denial of service in mod_http2, via slow and unneeded request bodies (bsc#1122838)
- CVE-2018-17199: Fixed that mod_session_cookie did not respect expiry time (bsc#1122839)
Non-security issue fixed:
- sysconfig.d is not created anymore if it already exists (bsc#1121086)
Patchnames
SUSE-2019-498,SUSE-SLE-SDK-12-SP3-2019-498,SUSE-SLE-SDK-12-SP4-2019-498,SUSE-SLE-SERVER-12-SP3-2019-498,SUSE-SLE-SERVER-12-SP4-2019-498
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for apache2", title: "Title of the patch", }, { category: "description", text: "This update for apache2 fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2018-17189: Fixed a denial of service in mod_http2, via slow and unneeded request bodies (bsc#1122838)\n- CVE-2018-17199: Fixed that mod_session_cookie did not respect expiry time (bsc#1122839)\n\nNon-security issue fixed:\n\n- sysconfig.d is not created anymore if it already exists (bsc#1121086)\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2019-498,SUSE-SLE-SDK-12-SP3-2019-498,SUSE-SLE-SDK-12-SP4-2019-498,SUSE-SLE-SERVER-12-SP3-2019-498,SUSE-SLE-SERVER-12-SP4-2019-498", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_0498-1.json", }, { category: "self", summary: "URL for SUSE-SU-2019:0498-1", url: "https://www.suse.com/support/update/announcement/2019/suse-su-20190498-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2019:0498-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2019-February/005156.html", }, { category: "self", summary: "SUSE Bug 1121086", url: "https://bugzilla.suse.com/1121086", }, { category: "self", summary: "SUSE Bug 1122838", url: "https://bugzilla.suse.com/1122838", }, { category: "self", summary: "SUSE Bug 1122839", url: "https://bugzilla.suse.com/1122839", }, { category: "self", summary: "SUSE CVE CVE-2018-17189 page", url: "https://www.suse.com/security/cve/CVE-2018-17189/", }, { category: "self", summary: "SUSE CVE CVE-2018-17199 page", url: "https://www.suse.com/security/cve/CVE-2018-17199/", }, ], title: "Security update for apache2", tracking: { current_release_date: "2019-02-26T15:44:36Z", generator: { date: "2019-02-26T15:44:36Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2019:0498-1", initial_release_date: "2019-02-26T15:44:36Z", revision_history: [ { date: "2019-02-26T15:44:36Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "apache2-2.4.23-29.34.4.aarch64", product: { name: "apache2-2.4.23-29.34.4.aarch64", product_id: "apache2-2.4.23-29.34.4.aarch64", }, }, { category: "product_version", name: "apache2-devel-2.4.23-29.34.4.aarch64", product: { name: "apache2-devel-2.4.23-29.34.4.aarch64", product_id: "apache2-devel-2.4.23-29.34.4.aarch64", }, }, { category: "product_version", name: "apache2-event-2.4.23-29.34.4.aarch64", product: { name: "apache2-event-2.4.23-29.34.4.aarch64", product_id: "apache2-event-2.4.23-29.34.4.aarch64", }, }, { category: "product_version", name: "apache2-example-pages-2.4.23-29.34.4.aarch64", product: { name: "apache2-example-pages-2.4.23-29.34.4.aarch64", product_id: "apache2-example-pages-2.4.23-29.34.4.aarch64", }, }, { category: "product_version", name: "apache2-prefork-2.4.23-29.34.4.aarch64", product: { name: "apache2-prefork-2.4.23-29.34.4.aarch64", product_id: "apache2-prefork-2.4.23-29.34.4.aarch64", }, }, { category: "product_version", name: "apache2-utils-2.4.23-29.34.4.aarch64", product: { name: "apache2-utils-2.4.23-29.34.4.aarch64", product_id: "apache2-utils-2.4.23-29.34.4.aarch64", }, }, { category: "product_version", name: "apache2-worker-2.4.23-29.34.4.aarch64", product: { name: "apache2-worker-2.4.23-29.34.4.aarch64", product_id: "apache2-worker-2.4.23-29.34.4.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "apache2-2.4.23-29.34.4.i586", product: { name: "apache2-2.4.23-29.34.4.i586", product_id: "apache2-2.4.23-29.34.4.i586", }, }, { category: "product_version", name: "apache2-devel-2.4.23-29.34.4.i586", product: { name: "apache2-devel-2.4.23-29.34.4.i586", product_id: "apache2-devel-2.4.23-29.34.4.i586", }, }, { category: "product_version", name: "apache2-event-2.4.23-29.34.4.i586", product: { name: "apache2-event-2.4.23-29.34.4.i586", product_id: "apache2-event-2.4.23-29.34.4.i586", }, }, { category: "product_version", name: "apache2-example-pages-2.4.23-29.34.4.i586", product: { name: "apache2-example-pages-2.4.23-29.34.4.i586", product_id: "apache2-example-pages-2.4.23-29.34.4.i586", }, }, { category: "product_version", name: "apache2-prefork-2.4.23-29.34.4.i586", product: { name: "apache2-prefork-2.4.23-29.34.4.i586", product_id: "apache2-prefork-2.4.23-29.34.4.i586", }, }, { category: "product_version", name: "apache2-utils-2.4.23-29.34.4.i586", product: { name: "apache2-utils-2.4.23-29.34.4.i586", product_id: "apache2-utils-2.4.23-29.34.4.i586", }, }, { category: "product_version", name: "apache2-worker-2.4.23-29.34.4.i586", product: { name: "apache2-worker-2.4.23-29.34.4.i586", product_id: "apache2-worker-2.4.23-29.34.4.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "apache2-doc-2.4.23-29.34.4.noarch", product: { name: "apache2-doc-2.4.23-29.34.4.noarch", product_id: "apache2-doc-2.4.23-29.34.4.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "apache2-2.4.23-29.34.4.ppc64le", product: { name: "apache2-2.4.23-29.34.4.ppc64le", product_id: "apache2-2.4.23-29.34.4.ppc64le", }, }, { category: "product_version", name: "apache2-devel-2.4.23-29.34.4.ppc64le", product: { name: "apache2-devel-2.4.23-29.34.4.ppc64le", product_id: "apache2-devel-2.4.23-29.34.4.ppc64le", }, }, { category: "product_version", name: "apache2-event-2.4.23-29.34.4.ppc64le", product: { name: "apache2-event-2.4.23-29.34.4.ppc64le", product_id: "apache2-event-2.4.23-29.34.4.ppc64le", }, }, { category: "product_version", name: "apache2-example-pages-2.4.23-29.34.4.ppc64le", product: { name: "apache2-example-pages-2.4.23-29.34.4.ppc64le", product_id: "apache2-example-pages-2.4.23-29.34.4.ppc64le", }, }, { category: "product_version", name: "apache2-prefork-2.4.23-29.34.4.ppc64le", product: { name: "apache2-prefork-2.4.23-29.34.4.ppc64le", product_id: "apache2-prefork-2.4.23-29.34.4.ppc64le", }, }, { category: "product_version", name: "apache2-utils-2.4.23-29.34.4.ppc64le", product: { name: "apache2-utils-2.4.23-29.34.4.ppc64le", product_id: "apache2-utils-2.4.23-29.34.4.ppc64le", }, }, { category: "product_version", name: "apache2-worker-2.4.23-29.34.4.ppc64le", product: { name: "apache2-worker-2.4.23-29.34.4.ppc64le", product_id: "apache2-worker-2.4.23-29.34.4.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "apache2-2.4.23-29.34.4.s390", product: { name: "apache2-2.4.23-29.34.4.s390", product_id: "apache2-2.4.23-29.34.4.s390", }, }, { category: "product_version", name: "apache2-devel-2.4.23-29.34.4.s390", product: { name: "apache2-devel-2.4.23-29.34.4.s390", product_id: "apache2-devel-2.4.23-29.34.4.s390", }, }, { category: "product_version", name: "apache2-event-2.4.23-29.34.4.s390", product: { name: "apache2-event-2.4.23-29.34.4.s390", product_id: "apache2-event-2.4.23-29.34.4.s390", }, }, { category: "product_version", name: "apache2-example-pages-2.4.23-29.34.4.s390", product: { name: "apache2-example-pages-2.4.23-29.34.4.s390", product_id: "apache2-example-pages-2.4.23-29.34.4.s390", }, }, { category: "product_version", name: "apache2-prefork-2.4.23-29.34.4.s390", product: { name: "apache2-prefork-2.4.23-29.34.4.s390", product_id: "apache2-prefork-2.4.23-29.34.4.s390", }, }, { category: "product_version", name: "apache2-utils-2.4.23-29.34.4.s390", product: { name: "apache2-utils-2.4.23-29.34.4.s390", product_id: "apache2-utils-2.4.23-29.34.4.s390", }, }, { category: "product_version", name: "apache2-worker-2.4.23-29.34.4.s390", product: { name: "apache2-worker-2.4.23-29.34.4.s390", product_id: "apache2-worker-2.4.23-29.34.4.s390", }, }, ], category: "architecture", name: "s390", }, { branches: [ { category: "product_version", name: "apache2-2.4.23-29.34.4.s390x", product: { name: "apache2-2.4.23-29.34.4.s390x", product_id: "apache2-2.4.23-29.34.4.s390x", }, }, { category: "product_version", name: "apache2-devel-2.4.23-29.34.4.s390x", product: { name: "apache2-devel-2.4.23-29.34.4.s390x", product_id: "apache2-devel-2.4.23-29.34.4.s390x", }, }, { category: "product_version", name: "apache2-event-2.4.23-29.34.4.s390x", product: { name: "apache2-event-2.4.23-29.34.4.s390x", product_id: "apache2-event-2.4.23-29.34.4.s390x", }, }, { category: "product_version", name: "apache2-example-pages-2.4.23-29.34.4.s390x", product: { name: "apache2-example-pages-2.4.23-29.34.4.s390x", product_id: "apache2-example-pages-2.4.23-29.34.4.s390x", }, }, { category: "product_version", name: "apache2-prefork-2.4.23-29.34.4.s390x", product: { name: "apache2-prefork-2.4.23-29.34.4.s390x", product_id: "apache2-prefork-2.4.23-29.34.4.s390x", }, }, { category: "product_version", name: "apache2-utils-2.4.23-29.34.4.s390x", product: { name: "apache2-utils-2.4.23-29.34.4.s390x", product_id: "apache2-utils-2.4.23-29.34.4.s390x", }, }, { category: "product_version", name: "apache2-worker-2.4.23-29.34.4.s390x", product: { name: "apache2-worker-2.4.23-29.34.4.s390x", product_id: "apache2-worker-2.4.23-29.34.4.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "apache2-2.4.23-29.34.4.x86_64", product: { name: "apache2-2.4.23-29.34.4.x86_64", product_id: "apache2-2.4.23-29.34.4.x86_64", }, }, { category: "product_version", name: "apache2-devel-2.4.23-29.34.4.x86_64", product: { name: "apache2-devel-2.4.23-29.34.4.x86_64", product_id: "apache2-devel-2.4.23-29.34.4.x86_64", }, }, { category: "product_version", name: "apache2-event-2.4.23-29.34.4.x86_64", product: { name: "apache2-event-2.4.23-29.34.4.x86_64", product_id: "apache2-event-2.4.23-29.34.4.x86_64", }, }, { category: "product_version", name: "apache2-example-pages-2.4.23-29.34.4.x86_64", product: { name: "apache2-example-pages-2.4.23-29.34.4.x86_64", product_id: "apache2-example-pages-2.4.23-29.34.4.x86_64", }, }, { category: "product_version", name: "apache2-prefork-2.4.23-29.34.4.x86_64", product: { name: "apache2-prefork-2.4.23-29.34.4.x86_64", product_id: "apache2-prefork-2.4.23-29.34.4.x86_64", }, }, { category: "product_version", name: "apache2-utils-2.4.23-29.34.4.x86_64", product: { name: "apache2-utils-2.4.23-29.34.4.x86_64", product_id: "apache2-utils-2.4.23-29.34.4.x86_64", }, }, { category: "product_version", name: "apache2-worker-2.4.23-29.34.4.x86_64", product: { name: "apache2-worker-2.4.23-29.34.4.x86_64", product_id: "apache2-worker-2.4.23-29.34.4.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Software Development Kit 12 SP3", product: { name: "SUSE Linux Enterprise Software Development Kit 12 SP3", product_id: "SUSE Linux Enterprise Software Development Kit 12 SP3", product_identification_helper: { cpe: "cpe:/o:suse:sle-sdk:12:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Software Development Kit 12 SP4", product: { name: "SUSE Linux Enterprise Software Development Kit 12 SP4", product_id: "SUSE Linux Enterprise Software Development Kit 12 SP4", product_identification_helper: { cpe: "cpe:/o:suse:sle-sdk:12:sp4", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 12 SP3", product: { name: "SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3", product_identification_helper: { cpe: "cpe:/o:suse:sles:12:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", product: { name: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_identification_helper: { cpe: "cpe:/o:suse:sles_sap:12:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 12 SP4", product: { name: "SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4", product_identification_helper: { cpe: "cpe:/o:suse:sles:12:sp4", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", product: { name: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_identification_helper: { cpe: "cpe:/o:suse:sles_sap:12:sp4", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "apache2-devel-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3", product_id: "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-devel-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-devel-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3", product_id: "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-devel-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-devel-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3", product_id: "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.s390x", }, product_reference: "apache2-devel-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-devel-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3", product_id: "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-devel-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-devel-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP4", product_id: "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-devel-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-devel-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP4", product_id: "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-devel-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-devel-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP4", product_id: "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.s390x", }, product_reference: "apache2-devel-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-devel-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP4", product_id: "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-devel-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.s390x", }, product_reference: "apache2-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-doc-2.4.23-29.34.4.noarch as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-doc-2.4.23-29.34.4.noarch", }, product_reference: "apache2-doc-2.4.23-29.34.4.noarch", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-example-pages-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-example-pages-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.s390x", }, product_reference: "apache2-example-pages-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-example-pages-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-prefork-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-prefork-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.s390x", }, product_reference: "apache2-prefork-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-prefork-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-utils-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-utils-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.s390x", }, product_reference: "apache2-utils-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-utils-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-worker-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-worker-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.s390x", }, product_reference: "apache2-worker-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", product_id: "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-worker-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.s390x", }, product_reference: "apache2-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-doc-2.4.23-29.34.4.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.34.4.noarch", }, product_reference: "apache2-doc-2.4.23-29.34.4.noarch", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-example-pages-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-example-pages-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.s390x", }, product_reference: "apache2-example-pages-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-example-pages-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-prefork-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-prefork-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.s390x", }, product_reference: "apache2-prefork-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-prefork-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-utils-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-utils-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.s390x", }, product_reference: "apache2-utils-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-utils-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-worker-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-worker-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.s390x", }, product_reference: "apache2-worker-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-worker-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.s390x", }, product_reference: "apache2-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-doc-2.4.23-29.34.4.noarch as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-doc-2.4.23-29.34.4.noarch", }, product_reference: "apache2-doc-2.4.23-29.34.4.noarch", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-example-pages-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-example-pages-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.s390x", }, product_reference: "apache2-example-pages-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-example-pages-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-prefork-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-prefork-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.s390x", }, product_reference: "apache2-prefork-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-prefork-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-utils-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-utils-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.s390x", }, product_reference: "apache2-utils-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-utils-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-worker-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-worker-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.s390x", }, product_reference: "apache2-worker-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server 12 SP4", product_id: "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-worker-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.s390x", }, product_reference: "apache2-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-doc-2.4.23-29.34.4.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.34.4.noarch", }, product_reference: "apache2-doc-2.4.23-29.34.4.noarch", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-example-pages-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-example-pages-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.s390x", }, product_reference: "apache2-example-pages-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-example-pages-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-example-pages-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-prefork-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-prefork-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.s390x", }, product_reference: "apache2-prefork-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-prefork-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-utils-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-utils-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.s390x", }, product_reference: "apache2-utils-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-utils-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.23-29.34.4.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.aarch64", }, product_reference: "apache2-worker-2.4.23-29.34.4.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.23-29.34.4.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.ppc64le", }, product_reference: "apache2-worker-2.4.23-29.34.4.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.23-29.34.4.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.s390x", }, product_reference: "apache2-worker-2.4.23-29.34.4.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.23-29.34.4.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.x86_64", }, product_reference: "apache2-worker-2.4.23-29.34.4.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, ], }, vulnerabilities: [ { cve: "CVE-2018-17189", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2018-17189", }, ], notes: [ { category: "general", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2018-17189", url: "https://www.suse.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "SUSE Bug 1122838 for CVE-2018-17189", url: "https://bugzilla.suse.com/1122838", }, { category: "external", summary: "SUSE Bug 1125965 for CVE-2018-17189", url: "https://bugzilla.suse.com/1125965", }, { category: "external", summary: "SUSE Bug 1126894 for CVE-2018-17189", url: "https://bugzilla.suse.com/1126894", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2019-02-26T15:44:36Z", details: "moderate", }, ], title: "CVE-2018-17189", }, { cve: "CVE-2018-17199", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2018-17199", }, ], notes: [ { category: "general", text: "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2018-17199", url: "https://www.suse.com/security/cve/CVE-2018-17199", }, { category: "external", summary: "SUSE Bug 1122838 for CVE-2018-17199", url: "https://bugzilla.suse.com/1122838", }, { category: "external", summary: "SUSE Bug 1122839 for CVE-2018-17199", url: "https://bugzilla.suse.com/1122839", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP3:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server 12 SP4:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.34.4.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:apache2-devel-2.4.23-29.34.4.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP4:apache2-devel-2.4.23-29.34.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2019-02-26T15:44:36Z", details: "moderate", }, ], title: "CVE-2018-17199", }, ], }
suse-su-2019:0504-1
Vulnerability from csaf_suse
Published
2019-02-27 07:43
Modified
2019-02-27 07:43
Summary
Security update for apache2
Notes
Title of the patch
Security update for apache2
Description of the patch
This update for apache2 fixes the following issues:
Security issues fixed:
- CVE-2018-17189: Fixed a denial of service in mod_http2, via slow and unneeded request bodies (bsc#1122838)
- CVE-2018-17199: Fixed that mod_session_cookie did not respect expiry time (bsc#1122839)
Non-security issue fixed:
- sysconfig.d is not created anymore if it already exists (bsc#1121086)
Patchnames
SUSE-2019-504,SUSE-SLE-Module-Development-Tools-OBS-15-2019-504,SUSE-SLE-Module-Server-Applications-15-2019-504
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for apache2", title: "Title of the patch", }, { category: "description", text: "This update for apache2 fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2018-17189: Fixed a denial of service in mod_http2, via slow and unneeded request bodies (bsc#1122838)\n- CVE-2018-17199: Fixed that mod_session_cookie did not respect expiry time (bsc#1122839)\n\nNon-security issue fixed:\n\n- sysconfig.d is not created anymore if it already exists (bsc#1121086)\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2019-504,SUSE-SLE-Module-Development-Tools-OBS-15-2019-504,SUSE-SLE-Module-Server-Applications-15-2019-504", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_0504-1.json", }, { category: "self", summary: "URL for SUSE-SU-2019:0504-1", url: "https://www.suse.com/support/update/announcement/2019/suse-su-20190504-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2019:0504-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2019-February/005160.html", }, { category: "self", summary: "SUSE Bug 1121086", url: "https://bugzilla.suse.com/1121086", }, { category: "self", summary: "SUSE Bug 1122838", url: "https://bugzilla.suse.com/1122838", }, { category: "self", summary: "SUSE Bug 1122839", url: "https://bugzilla.suse.com/1122839", }, { category: "self", summary: "SUSE CVE CVE-2018-17189 page", url: "https://www.suse.com/security/cve/CVE-2018-17189/", }, { category: "self", summary: "SUSE CVE CVE-2018-17199 page", url: "https://www.suse.com/security/cve/CVE-2018-17199/", }, ], title: "Security update for apache2", tracking: { current_release_date: "2019-02-27T07:43:55Z", generator: { date: "2019-02-27T07:43:55Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2019:0504-1", initial_release_date: "2019-02-27T07:43:55Z", revision_history: [ { date: "2019-02-27T07:43:55Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "apache2-2.4.33-3.9.7.aarch64", product: { name: "apache2-2.4.33-3.9.7.aarch64", product_id: "apache2-2.4.33-3.9.7.aarch64", }, }, { category: "product_version", name: "apache2-devel-2.4.33-3.9.7.aarch64", product: { name: "apache2-devel-2.4.33-3.9.7.aarch64", product_id: "apache2-devel-2.4.33-3.9.7.aarch64", }, }, { category: "product_version", name: "apache2-event-2.4.33-3.9.7.aarch64", product: { name: "apache2-event-2.4.33-3.9.7.aarch64", product_id: "apache2-event-2.4.33-3.9.7.aarch64", }, }, { category: "product_version", name: "apache2-example-pages-2.4.33-3.9.7.aarch64", product: { name: "apache2-example-pages-2.4.33-3.9.7.aarch64", product_id: "apache2-example-pages-2.4.33-3.9.7.aarch64", }, }, { category: "product_version", name: "apache2-prefork-2.4.33-3.9.7.aarch64", product: { name: "apache2-prefork-2.4.33-3.9.7.aarch64", product_id: "apache2-prefork-2.4.33-3.9.7.aarch64", }, }, { category: "product_version", name: "apache2-utils-2.4.33-3.9.7.aarch64", product: { name: "apache2-utils-2.4.33-3.9.7.aarch64", product_id: "apache2-utils-2.4.33-3.9.7.aarch64", }, }, { category: "product_version", name: "apache2-worker-2.4.33-3.9.7.aarch64", product: { name: "apache2-worker-2.4.33-3.9.7.aarch64", product_id: "apache2-worker-2.4.33-3.9.7.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "apache2-2.4.33-3.9.7.i586", product: { name: "apache2-2.4.33-3.9.7.i586", product_id: "apache2-2.4.33-3.9.7.i586", }, }, { category: "product_version", name: "apache2-devel-2.4.33-3.9.7.i586", product: { name: "apache2-devel-2.4.33-3.9.7.i586", product_id: "apache2-devel-2.4.33-3.9.7.i586", }, }, { category: "product_version", name: "apache2-event-2.4.33-3.9.7.i586", product: { name: "apache2-event-2.4.33-3.9.7.i586", product_id: "apache2-event-2.4.33-3.9.7.i586", }, }, { category: "product_version", name: "apache2-example-pages-2.4.33-3.9.7.i586", product: { name: "apache2-example-pages-2.4.33-3.9.7.i586", product_id: "apache2-example-pages-2.4.33-3.9.7.i586", }, }, { category: "product_version", name: "apache2-prefork-2.4.33-3.9.7.i586", product: { name: "apache2-prefork-2.4.33-3.9.7.i586", product_id: "apache2-prefork-2.4.33-3.9.7.i586", }, }, { category: "product_version", name: "apache2-utils-2.4.33-3.9.7.i586", product: { name: "apache2-utils-2.4.33-3.9.7.i586", product_id: "apache2-utils-2.4.33-3.9.7.i586", }, }, { category: "product_version", name: "apache2-worker-2.4.33-3.9.7.i586", product: { name: "apache2-worker-2.4.33-3.9.7.i586", product_id: "apache2-worker-2.4.33-3.9.7.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "apache2-doc-2.4.33-3.9.7.noarch", product: { name: "apache2-doc-2.4.33-3.9.7.noarch", product_id: "apache2-doc-2.4.33-3.9.7.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "apache2-2.4.33-3.9.7.ppc64le", product: { name: "apache2-2.4.33-3.9.7.ppc64le", product_id: "apache2-2.4.33-3.9.7.ppc64le", }, }, { category: "product_version", name: "apache2-devel-2.4.33-3.9.7.ppc64le", product: { name: "apache2-devel-2.4.33-3.9.7.ppc64le", product_id: "apache2-devel-2.4.33-3.9.7.ppc64le", }, }, { category: "product_version", name: "apache2-event-2.4.33-3.9.7.ppc64le", product: { name: "apache2-event-2.4.33-3.9.7.ppc64le", product_id: "apache2-event-2.4.33-3.9.7.ppc64le", }, }, { category: "product_version", name: "apache2-example-pages-2.4.33-3.9.7.ppc64le", product: { name: "apache2-example-pages-2.4.33-3.9.7.ppc64le", product_id: "apache2-example-pages-2.4.33-3.9.7.ppc64le", }, }, { category: "product_version", name: "apache2-prefork-2.4.33-3.9.7.ppc64le", product: { name: "apache2-prefork-2.4.33-3.9.7.ppc64le", product_id: "apache2-prefork-2.4.33-3.9.7.ppc64le", }, }, { category: "product_version", name: "apache2-utils-2.4.33-3.9.7.ppc64le", product: { name: "apache2-utils-2.4.33-3.9.7.ppc64le", product_id: "apache2-utils-2.4.33-3.9.7.ppc64le", }, }, { category: "product_version", name: "apache2-worker-2.4.33-3.9.7.ppc64le", product: { name: "apache2-worker-2.4.33-3.9.7.ppc64le", product_id: "apache2-worker-2.4.33-3.9.7.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "apache2-2.4.33-3.9.7.s390x", product: { name: "apache2-2.4.33-3.9.7.s390x", product_id: "apache2-2.4.33-3.9.7.s390x", }, }, { category: "product_version", name: "apache2-devel-2.4.33-3.9.7.s390x", product: { name: "apache2-devel-2.4.33-3.9.7.s390x", product_id: "apache2-devel-2.4.33-3.9.7.s390x", }, }, { category: "product_version", name: "apache2-event-2.4.33-3.9.7.s390x", product: { name: "apache2-event-2.4.33-3.9.7.s390x", product_id: "apache2-event-2.4.33-3.9.7.s390x", }, }, { category: "product_version", name: "apache2-example-pages-2.4.33-3.9.7.s390x", product: { name: "apache2-example-pages-2.4.33-3.9.7.s390x", product_id: "apache2-example-pages-2.4.33-3.9.7.s390x", }, }, { category: "product_version", name: "apache2-prefork-2.4.33-3.9.7.s390x", product: { name: "apache2-prefork-2.4.33-3.9.7.s390x", product_id: "apache2-prefork-2.4.33-3.9.7.s390x", }, }, { category: "product_version", name: "apache2-utils-2.4.33-3.9.7.s390x", product: { name: "apache2-utils-2.4.33-3.9.7.s390x", product_id: "apache2-utils-2.4.33-3.9.7.s390x", }, }, { category: "product_version", name: "apache2-worker-2.4.33-3.9.7.s390x", product: { name: "apache2-worker-2.4.33-3.9.7.s390x", product_id: "apache2-worker-2.4.33-3.9.7.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "apache2-2.4.33-3.9.7.x86_64", product: { name: "apache2-2.4.33-3.9.7.x86_64", product_id: "apache2-2.4.33-3.9.7.x86_64", }, }, { category: "product_version", name: "apache2-devel-2.4.33-3.9.7.x86_64", product: { name: "apache2-devel-2.4.33-3.9.7.x86_64", product_id: "apache2-devel-2.4.33-3.9.7.x86_64", }, }, { category: "product_version", name: "apache2-event-2.4.33-3.9.7.x86_64", product: { name: "apache2-event-2.4.33-3.9.7.x86_64", product_id: "apache2-event-2.4.33-3.9.7.x86_64", }, }, { category: "product_version", name: "apache2-example-pages-2.4.33-3.9.7.x86_64", product: { name: "apache2-example-pages-2.4.33-3.9.7.x86_64", product_id: "apache2-example-pages-2.4.33-3.9.7.x86_64", }, }, { category: "product_version", name: "apache2-prefork-2.4.33-3.9.7.x86_64", product: { name: "apache2-prefork-2.4.33-3.9.7.x86_64", product_id: "apache2-prefork-2.4.33-3.9.7.x86_64", }, }, { category: "product_version", name: "apache2-utils-2.4.33-3.9.7.x86_64", product: { name: "apache2-utils-2.4.33-3.9.7.x86_64", product_id: "apache2-utils-2.4.33-3.9.7.x86_64", }, }, { category: "product_version", name: "apache2-worker-2.4.33-3.9.7.x86_64", product: { name: "apache2-worker-2.4.33-3.9.7.x86_64", product_id: "apache2-worker-2.4.33-3.9.7.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Module for Server Applications 15", product: { name: "SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-server-applications:15", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "apache2-2.4.33-3.9.7.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.aarch64", }, product_reference: "apache2-2.4.33-3.9.7.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.33-3.9.7.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.ppc64le", }, product_reference: "apache2-2.4.33-3.9.7.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.33-3.9.7.s390x as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.s390x", }, product_reference: "apache2-2.4.33-3.9.7.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-2.4.33-3.9.7.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.x86_64", }, product_reference: "apache2-2.4.33-3.9.7.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-devel-2.4.33-3.9.7.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.aarch64", }, product_reference: "apache2-devel-2.4.33-3.9.7.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-devel-2.4.33-3.9.7.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.ppc64le", }, product_reference: "apache2-devel-2.4.33-3.9.7.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-devel-2.4.33-3.9.7.s390x as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.s390x", }, product_reference: "apache2-devel-2.4.33-3.9.7.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-devel-2.4.33-3.9.7.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.x86_64", }, product_reference: "apache2-devel-2.4.33-3.9.7.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-doc-2.4.33-3.9.7.noarch as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-doc-2.4.33-3.9.7.noarch", }, product_reference: "apache2-doc-2.4.33-3.9.7.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.33-3.9.7.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.aarch64", }, product_reference: "apache2-prefork-2.4.33-3.9.7.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.33-3.9.7.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.ppc64le", }, product_reference: "apache2-prefork-2.4.33-3.9.7.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.33-3.9.7.s390x as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.s390x", }, product_reference: "apache2-prefork-2.4.33-3.9.7.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-prefork-2.4.33-3.9.7.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.x86_64", }, product_reference: "apache2-prefork-2.4.33-3.9.7.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.33-3.9.7.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.aarch64", }, product_reference: "apache2-utils-2.4.33-3.9.7.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.33-3.9.7.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.ppc64le", }, product_reference: "apache2-utils-2.4.33-3.9.7.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.33-3.9.7.s390x as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.s390x", }, product_reference: "apache2-utils-2.4.33-3.9.7.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-utils-2.4.33-3.9.7.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.x86_64", }, product_reference: "apache2-utils-2.4.33-3.9.7.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.33-3.9.7.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.aarch64", }, product_reference: "apache2-worker-2.4.33-3.9.7.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.33-3.9.7.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.ppc64le", }, product_reference: "apache2-worker-2.4.33-3.9.7.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.33-3.9.7.s390x as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.s390x", }, product_reference: "apache2-worker-2.4.33-3.9.7.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, { category: "default_component_of", full_product_name: { name: "apache2-worker-2.4.33-3.9.7.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15", product_id: "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.x86_64", }, product_reference: "apache2-worker-2.4.33-3.9.7.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15", }, ], }, vulnerabilities: [ { cve: "CVE-2018-17189", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2018-17189", }, ], notes: [ { category: "general", text: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-doc-2.4.33-3.9.7.noarch", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.x86_64", ], }, references: [ { category: "external", summary: "CVE-2018-17189", url: "https://www.suse.com/security/cve/CVE-2018-17189", }, { category: "external", summary: "SUSE Bug 1122838 for CVE-2018-17189", url: "https://bugzilla.suse.com/1122838", }, { category: "external", summary: "SUSE Bug 1125965 for CVE-2018-17189", url: "https://bugzilla.suse.com/1125965", }, { category: "external", summary: "SUSE Bug 1126894 for CVE-2018-17189", url: "https://bugzilla.suse.com/1126894", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-doc-2.4.33-3.9.7.noarch", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-doc-2.4.33-3.9.7.noarch", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.x86_64", ], }, ], threats: [ { category: "impact", date: "2019-02-27T07:43:55Z", details: "moderate", }, ], title: "CVE-2018-17189", }, { cve: "CVE-2018-17199", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2018-17199", }, ], notes: [ { category: "general", text: "In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-doc-2.4.33-3.9.7.noarch", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.x86_64", ], }, references: [ { category: "external", summary: "CVE-2018-17199", url: "https://www.suse.com/security/cve/CVE-2018-17199", }, { category: "external", summary: "SUSE Bug 1122838 for CVE-2018-17199", url: "https://bugzilla.suse.com/1122838", }, { category: "external", summary: "SUSE Bug 1122839 for CVE-2018-17199", url: "https://bugzilla.suse.com/1122839", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-doc-2.4.33-3.9.7.noarch", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-devel-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-doc-2.4.33-3.9.7.noarch", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-prefork-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-utils-2.4.33-3.9.7.x86_64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.aarch64", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.s390x", "SUSE Linux Enterprise Module for Server Applications 15:apache2-worker-2.4.33-3.9.7.x86_64", ], }, ], threats: [ { category: "impact", date: "2019-02-27T07:43:55Z", details: "moderate", }, ], title: "CVE-2018-17199", }, ], }
fkie_cve-2018-17189
Vulnerability from fkie_nvd
Published
2019-01-30 22:29
Modified
2024-11-21 03:54
Severity ?
Summary
In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.
References
Impacted products
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:apache:http_server:2.4.17:*:*:*:*:*:*:*", matchCriteriaId: "E1F45B27-504B-4202-87B8-BD3B094003F1", vulnerable: true, }, { criteria: "cpe:2.3:a:apache:http_server:2.4.18:*:*:*:*:*:*:*", matchCriteriaId: "F2FB2B98-DFD2-420A-8A7F-9B288651242F", vulnerable: true, }, { criteria: "cpe:2.3:a:apache:http_server:2.4.20:*:*:*:*:*:*:*", matchCriteriaId: "B803D25B-0A19-4569-BA05-09D58F33917C", vulnerable: true, }, { criteria: "cpe:2.3:a:apache:http_server:2.4.23:*:*:*:*:*:*:*", matchCriteriaId: "8510442C-212F-4013-85FA-E0AB59F6F2C6", vulnerable: true, }, { criteria: "cpe:2.3:a:apache:http_server:2.4.25:*:*:*:*:*:*:*", matchCriteriaId: "FB5673AB-53BB-40B2-83A7-8B82B2D0EBB8", vulnerable: true, }, { criteria: "cpe:2.3:a:apache:http_server:2.4.26:*:*:*:*:*:*:*", matchCriteriaId: "FBB3ED63-45CA-44AB-973C-9AD2569AD800", vulnerable: true, }, { criteria: "cpe:2.3:a:apache:http_server:2.4.27:*:*:*:*:*:*:*", matchCriteriaId: "FF30AD98-9CBA-456E-A827-79FCEDEB30A1", vulnerable: true, }, { criteria: "cpe:2.3:a:apache:http_server:2.4.28:*:*:*:*:*:*:*", matchCriteriaId: "C117BF2F-1E5B-4AEC-8770-3153E5B4CD07", vulnerable: true, }, { criteria: "cpe:2.3:a:apache:http_server:2.4.29:*:*:*:*:*:*:*", matchCriteriaId: "437BC6D8-D103-452C-9C86-D89FC977A50F", vulnerable: true, }, { criteria: "cpe:2.3:a:apache:http_server:2.4.30:*:*:*:*:*:*:*", matchCriteriaId: "B652B1D0-CCDA-46C6-BCFE-A1478CD0A0DC", vulnerable: true, }, { criteria: "cpe:2.3:a:apache:http_server:2.4.33:*:*:*:*:*:*:*", matchCriteriaId: "344A54D6-1120-4EFB-990D-2837562889A2", vulnerable: true, }, { criteria: "cpe:2.3:a:apache:http_server:2.4.34:*:*:*:*:*:*:*", matchCriteriaId: "9BA36996-04B2-4DFB-86BC-4E655347E06C", vulnerable: true, }, { criteria: "cpe:2.3:a:apache:http_server:2.4.35:*:*:*:*:*:*:*", matchCriteriaId: "BD011C87-5F0C-48AE-88A7-B3A9BD8144EF", vulnerable: true, }, { criteria: "cpe:2.3:a:apache:http_server:2.4.37:*:*:*:*:*:*:*", matchCriteriaId: "DE5F8320-A680-4E2F-B32F-F7DBEED09ED6", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:netapp:santricity_cloud_connector:-:*:*:*:*:*:*:*", matchCriteriaId: "AB15BCF1-1B1D-49D8-9B76-46DCB10044DB", vulnerable: true, }, { criteria: "cpe:2.3:a:netapp:storage_automation_store:-:*:*:*:*:*:*:*", matchCriteriaId: "7B7A6697-98CC-4E36-93DB-B7160F8399F9", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*", matchCriteriaId: "DC1BD7B7-6D88-42B8-878E-F1318CA5FCAF", vulnerable: true, }, { criteria: "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", matchCriteriaId: "D100F7CE-FC64-4CC6-852A-6136D72DA419", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", matchCriteriaId: "DEECE5FC-CACF-4496-A3E7-164736409252", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:oracle:enterprise_manager_ops_center:12.3.3:*:*:*:*:*:*:*", matchCriteriaId: "AB654DFA-FEF9-4D00-ADB0-F3F2B6ACF13E", vulnerable: true, }, { criteria: "cpe:2.3:a:oracle:hospitality_guest_access:4.2.0:*:*:*:*:*:*:*", matchCriteriaId: "1A3DC116-2844-47A1-BEC2-D0675DD97148", vulnerable: true, }, { criteria: "cpe:2.3:a:oracle:hospitality_guest_access:4.2.1:*:*:*:*:*:*:*", matchCriteriaId: "E0F1DF3E-0F2D-4EFC-9A3E-F72149C8AE94", vulnerable: true, }, { criteria: "cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*", matchCriteriaId: "82EA4BA7-C38B-4AF3-8914-9E3D089EBDD4", vulnerable: true, }, { criteria: "cpe:2.3:a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:*", matchCriteriaId: "B9C9BC66-FA5F-4774-9BDA-7AB88E2839C4", vulnerable: true, }, { criteria: "cpe:2.3:a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:*", matchCriteriaId: "7F69B9A5-F21B-4904-9F27-95C0F7A628E3", vulnerable: true, }, { criteria: "cpe:2.3:a:oracle:retail_xstore_point_of_service:7.0:*:*:*:*:*:*:*", matchCriteriaId: "2F87FC90-16D0-4051-8280-B0DD4441F10B", vulnerable: true, }, { criteria: "cpe:2.3:a:oracle:retail_xstore_point_of_service:7.1:*:*:*:*:*:*:*", matchCriteriaId: "A0ED83E3-E6BF-4EAA-AF8F-33485A88A218", vulnerable: true, }, { criteria: "cpe:2.3:a:oracle:sun_zfs_storage_appliance_kit:8.8.6:*:*:*:*:*:*:*", matchCriteriaId: "517A2282-C254-49EB-A52D-FC2B45E70ADD", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", matchCriteriaId: "815D70A8-47D3-459C-A32C-9FEACA0659D1", vulnerable: true, }, { criteria: "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*", matchCriteriaId: "7A5301BF-1402-4BE0-A0F8-69FBE79BC6D6", vulnerable: true, }, { criteria: "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", matchCriteriaId: "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D", vulnerable: true, }, { criteria: "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", matchCriteriaId: "07C312A0-CD2C-4B9C-B064-6409B25C278F", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:redhat:jboss_core_services:1.0:*:*:*:*:*:*:*", matchCriteriaId: "A2466282-51AB-478D-9FF4-FA524265ED2E", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*", matchCriteriaId: "2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC", vulnerable: false, }, { criteria: "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", matchCriteriaId: "142AD0DD-4CF3-4D74-9442-459CE3347E3A", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, ], cveTags: [], descriptions: [ { lang: "en", value: "In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.", }, { lang: "es", value: "En Apache HTTP Server, en sus versiones 2.4.37 y anteriores, mediante el envío de cuerpos de respuesta mediante la técnica del \"slow loris\" a recursos planos, la transmisión h2 para esa petición ocupó de forma innecesaria un hilo de servidor que limpiaba tales datos entrantes. Esto afecta solo a las conexiones HTTP/2 (mod_http2).", }, ], id: "CVE-2018-17189", lastModified: "2024-11-21T03:54:03.157", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 5, confidentialityImpact: "NONE", integrityImpact: "NONE", vectorString: "AV:N/AC:L/Au:N/C:N/I:N/A:P", version: "2.0", }, exploitabilityScore: 10, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 1.4, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2019-01-30T22:29:00.357", references: [ { source: "security@apache.org", tags: [ "Third Party Advisory", "VDB Entry", ], url: "http://www.securityfocus.com/bid/106685", }, { source: "security@apache.org", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { source: "security@apache.org", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { source: "security@apache.org", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { source: "security@apache.org", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { source: "security@apache.org", tags: [ "Vendor Advisory", ], url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, { source: "security@apache.org", url: "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E", }, { source: "security@apache.org", url: "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E", }, { source: "security@apache.org", url: "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf%40%3Ccvs.httpd.apache.org%3E", }, { source: "security@apache.org", url: "https://lists.apache.org/thread.html/r15f9aa4427581a1aecb4063f1b4b983511ae1c9935e2a0a6876dad3c%40%3Ccvs.httpd.apache.org%3E", }, { source: "security@apache.org", url: "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E", }, { source: "security@apache.org", url: "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E", }, { source: "security@apache.org", url: "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E", }, { source: "security@apache.org", url: "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E", }, { source: "security@apache.org", url: "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538%40%3Ccvs.httpd.apache.org%3E", }, { source: "security@apache.org", url: "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E", }, { source: "security@apache.org", url: "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9%40%3Ccvs.httpd.apache.org%3E", }, { source: "security@apache.org", url: "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E", }, { source: "security@apache.org", url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IY7SJQOO3PYFVINZW6H5EK4EZ3HSGZNM/", }, { source: "security@apache.org", url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U7N3DUEBFVGQWQEME5HTPTTKDHGHBAC6/", }, { source: "security@apache.org", tags: [ "Issue Tracking", "Mailing List", "Third Party Advisory", ], url: "https://seclists.org/bugtraq/2019/Apr/5", }, { source: "security@apache.org", tags: [ "Third Party Advisory", ], url: "https://security.gentoo.org/glsa/201903-21", }, { source: "security@apache.org", tags: [ "Third Party Advisory", ], url: "https://security.netapp.com/advisory/ntap-20190125-0001/", }, { source: "security@apache.org", tags: [ "Third Party Advisory", ], url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03950en_us", }, { source: "security@apache.org", tags: [ "Third Party Advisory", ], url: "https://usn.ubuntu.com/3937-1/", }, { source: "security@apache.org", tags: [ "Third Party Advisory", ], url: "https://www.debian.org/security/2019/dsa-4422", }, { source: "security@apache.org", tags: [ "Third Party Advisory", ], url: "https://www.oracle.com/security-alerts/cpujan2020.html", }, { source: "security@apache.org", tags: [ "Third Party Advisory", ], url: "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", }, { source: "security@apache.org", tags: [ "Third Party Advisory", ], url: "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", }, { source: "security@apache.org", tags: [ "Third Party Advisory", ], url: "https://www.tenable.com/security/tns-2019-09", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", "VDB Entry", ], url: "http://www.securityfocus.com/bid/106685", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2019:3932", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2019:3933", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2019:3935", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2019:4126", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Vendor Advisory", ], url: "https://httpd.apache.org/security/vulnerabilities_24.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.apache.org/thread.html/r06f0d87ebb6d59ed8379633f36f72f5b1f79cadfda72ede0830b42cf%40%3Ccvs.httpd.apache.org%3E", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.apache.org/thread.html/r15f9aa4427581a1aecb4063f1b4b983511ae1c9935e2a0a6876dad3c%40%3Ccvs.httpd.apache.org%3E", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.apache.org/thread.html/r76142b8c5119df2178be7c2dba88fde552eedeec37ea993dfce68d1d%40%3Ccvs.httpd.apache.org%3E", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.apache.org/thread.html/rd2fb621142e7fa187cfe12d7137bf66e7234abcbbcd800074c84a538%40%3Ccvs.httpd.apache.org%3E", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.apache.org/thread.html/re473305a65b4db888e3556e4dae10c2a04ee89dcff2e26ecdbd860a9%40%3Ccvs.httpd.apache.org%3E", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IY7SJQOO3PYFVINZW6H5EK4EZ3HSGZNM/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U7N3DUEBFVGQWQEME5HTPTTKDHGHBAC6/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Issue Tracking", "Mailing List", "Third Party Advisory", ], url: "https://seclists.org/bugtraq/2019/Apr/5", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://security.gentoo.org/glsa/201903-21", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://security.netapp.com/advisory/ntap-20190125-0001/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03950en_us", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://usn.ubuntu.com/3937-1/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://www.debian.org/security/2019/dsa-4422", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://www.oracle.com/security-alerts/cpujan2020.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://www.tenable.com/security/tns-2019-09", }, ], sourceIdentifier: "security@apache.org", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-400", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.