Red Hat Security Advisory 2020-4751-01 - The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Issues addressed include cross site scripting, denial of service, and open redirection vulnerabilities.
c803a012b2bfd5ff5443ccfb348e0157e8137ca2e19be5a382e7ae53176b8146
Red Hat Security Advisory 2020-3958-01 - The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Issues addressed include bypass, denial of service, open redirection, and out of bounds read vulnerabilities.
acaaf3c1a0697f795263f28ad2c966aff94c1206e2573cbce2f29a9e0f3f008a
Red Hat Security Advisory 2020-2263-01 - The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Issues addressed include an open redirection vulnerability.
86f9d57c292b3fb674b63049a80ea6db991334dcbfdc96c2f2ee59843df7b710
Red Hat Security Advisory 2020-1337-01 - This release adds the new Apache HTTP Server 2.4.37 Service Pack 2 packages that are part of the JBoss Core Services offering. This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.37 Service Pack 1 and includes bug fixes and enhancements. Issues addressed include cross site scripting and information leakage vulnerabilities.
f5fa6f7bb5d7a7d309a8775da86642e1bf6dd537d5dd050f80f0f912e8b85506
Red Hat Security Advisory 2020-1336-01 - Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience. This release adds the new Apache HTTP Server 2.4.37 Service Pack 2 packages that are part of the JBoss Core Services offering. This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.37 Service Pack 1 and includes bug fixes and enhancements. Issues addressed include cross site scripting and information leakage vulnerabilities.
5898d1e008b3119bd09596bf525e8c009122f59f9884463cf27a8b718a6c7d0a
Ubuntu Security Notice 4113-2 - USN-4113-1 fixed vulnerabilities in the Apache HTTP server. Unfortunately, that update introduced a regression when proxying balancer manager connections in some configurations. This update fixes the problem. Various other issues were also addressed.
12e6db2d26e4870ef279fcdf0a842386cd5e0332acd0db3cbfa6014942b8dc0f
Gentoo Linux Security Advisory 201909-4 - Multiple vulnerabilities have been found in Apache, the worst of which could result in a Denial of Service condition. Versions less than 2.4.41 are affected.
946fd77a8589b7abace8328500ac0cbb9733cba80c9adbeca01e2508f1b62ea0
Ubuntu Security Notice 4113-1 - Stefan Eissing discovered that the HTTP/2 implementation in Apache did not properly handle upgrade requests from HTTP/1.1 to HTTP/2 in some situations. A remote attacker could use this to cause a denial of service. This issue only affected Ubuntu 18.04 LTS and Ubuntu 19.04. Craig Young discovered that a memory overwrite error existed in Apache when performing HTTP/2 very early pushes in some situations. A remote attacker could use this to cause a denial of service. This issue only affected Ubuntu 18.04 LTS and Ubuntu 19.04. Various other issues were also addressed.
fc01073e29fa98b6982a2c858a17b8ca2bb20084a922393ce6c10b57d28d56cf
Debian Linux Security Advisory 4509-1 - Several vulnerabilities have been found in the Apache HTTPD server.
05f15168b7b98ddf7c58034b303654c50c6fce27c6c243e52c9f5c3c414bf30d