CLSA-2022-1644869841

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1644869841.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2022-1644869841

Upstream

CVE-2021-34798

CVE-2021-36160

CVE-2021-39275

CVE-2021-44224

Published

2022-02-14T20:17:21Z

Modified

2026-06-01T00:33:19.099409815Z

Summary

Fix of CVE: CVE-2021-34798, CVE-2021-39275, CVE-2021-36160, CVE-2021-44224

Details

CVE-2021-44224: possible NULL dereference or SSRF in forward proxy configurations
CVE-2021-39275: out-of-bounds write in apescapequotes() via malicious input
CVE-2021-36160: modproxyuwsgi: out-of-bounds read via a crafted request uri-path
CVE-2021-34798: NULL pointer dereference via malformed requests

References

https://errata.cloudlinux.com/centos8.4-els/CLSA-2022-1644869841.html

Affected packages

TuxCare:CentOS:8.4

httpd

Package

Name: httpd
Purl: pkg:rpm/tuxcare/httpd?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.37-39.module_el8.4.0+2006+b87b2deb.1.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1644869841.json"

httpd-devel

Package

Name: httpd-devel
Purl: pkg:rpm/tuxcare/httpd-devel?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.37-39.module_el8.4.0+2006+b87b2deb.1.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1644869841.json"

httpd-filesystem

Package

Name: httpd-filesystem
Purl: pkg:rpm/tuxcare/httpd-filesystem?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.37-39.module_el8.4.0+2006+b87b2deb.1.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1644869841.json"

httpd-manual

Package

Name: httpd-manual
Purl: pkg:rpm/tuxcare/httpd-manual?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.37-39.module_el8.4.0+2006+b87b2deb.1.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1644869841.json"

httpd-tools

Package

Name: httpd-tools
Purl: pkg:rpm/tuxcare/httpd-tools?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.37-39.module_el8.4.0+2006+b87b2deb.1.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1644869841.json"

mod_ldap

Package

Name: mod_ldap
Purl: pkg:rpm/tuxcare/mod_ldap?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.37-39.module_el8.4.0+2006+b87b2deb.1.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1644869841.json"

mod_proxy_html

Package

Name: mod_proxy_html
Purl: pkg:rpm/tuxcare/mod_proxy_html?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.4.37-39.module_el8.4.0+2006+b87b2deb.1.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1644869841.json"

mod_session

Package

Name: mod_session
Purl: pkg:rpm/tuxcare/mod_session?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.37-39.module_el8.4.0+2006+b87b2deb.1.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1644869841.json"

mod_ssl

Package

Name: mod_ssl
Purl: pkg:rpm/tuxcare/mod_ssl?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.4.37-39.module_el8.4.0+2006+b87b2deb.1.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2022-1644869841.json"