RHSA-2018:3558
- Source
- https://access.redhat.com/errata/RHSA-2018:3558
- Import Source
- https://security.access.redhat.com/data/osv/RHSA-2018:3558.json
- JSON Data
- https://api.osv.dev/v1/vulns/RHSA-2018:3558
- Related
- Published
- 2024-09-13T16:54:33Z
- Modified
- 2024-09-13T16:54:33Z
- Severity
-
- 8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- Red Hat Security Advisory: httpd24 security, bug fix, and enhancement update
- Details
- References
-
- https://access.redhat.com/errata/RHSA-2018:3558
- https://access.redhat.com/security/updates/classification/#moderate
- https://access.redhat.com/documentation/en-us/red_hat_software_collections/3/html/3.2_release_notes/chap-rhscl#sect-RHSCL-Changes-httpd
- https://bugzilla.redhat.com/show_bug.cgi?id=1362183
- https://bugzilla.redhat.com/show_bug.cgi?id=1362190
- https://bugzilla.redhat.com/show_bug.cgi?id=1362199
- https://bugzilla.redhat.com/show_bug.cgi?id=1373229
- https://bugzilla.redhat.com/show_bug.cgi?id=1375906
- https://bugzilla.redhat.com/show_bug.cgi?id=1388370
- https://bugzilla.redhat.com/show_bug.cgi?id=1388371
- https://bugzilla.redhat.com/show_bug.cgi?id=1388377
- https://bugzilla.redhat.com/show_bug.cgi?id=1388378
- https://bugzilla.redhat.com/show_bug.cgi?id=1388379
- https://bugzilla.redhat.com/show_bug.cgi?id=1388382
- https://bugzilla.redhat.com/show_bug.cgi?id=1388385
- https://bugzilla.redhat.com/show_bug.cgi?id=1388386
- https://bugzilla.redhat.com/show_bug.cgi?id=1388388
- https://bugzilla.redhat.com/show_bug.cgi?id=1388390
- https://bugzilla.redhat.com/show_bug.cgi?id=1388392
- https://bugzilla.redhat.com/show_bug.cgi?id=1406712
- https://bugzilla.redhat.com/show_bug.cgi?id=1439190
- https://bugzilla.redhat.com/show_bug.cgi?id=1478309
- https://bugzilla.redhat.com/show_bug.cgi?id=1478310
- https://bugzilla.redhat.com/show_bug.cgi?id=1495541
- https://bugzilla.redhat.com/show_bug.cgi?id=1503705
- https://bugzilla.redhat.com/show_bug.cgi?id=1515757
- https://bugzilla.redhat.com/show_bug.cgi?id=1515760
- https://bugzilla.redhat.com/show_bug.cgi?id=1518737
- https://bugzilla.redhat.com/show_bug.cgi?id=1537125
- https://bugzilla.redhat.com/show_bug.cgi?id=1540167
- https://bugzilla.redhat.com/show_bug.cgi?id=1552628
- https://bugzilla.redhat.com/show_bug.cgi?id=1552631
- https://bugzilla.redhat.com/show_bug.cgi?id=1553398
- https://bugzilla.redhat.com/show_bug.cgi?id=1558450
- https://bugzilla.redhat.com/show_bug.cgi?id=1560395
- https://bugzilla.redhat.com/show_bug.cgi?id=1560399
- https://bugzilla.redhat.com/show_bug.cgi?id=1560599
- https://bugzilla.redhat.com/show_bug.cgi?id=1560614
- https://bugzilla.redhat.com/show_bug.cgi?id=1560634
- https://bugzilla.redhat.com/show_bug.cgi?id=1560643
- https://bugzilla.redhat.com/show_bug.cgi?id=1575536
- https://bugzilla.redhat.com/show_bug.cgi?id=1605048
- https://bugzilla.redhat.com/show_bug.cgi?id=1622707
- https://bugzilla.redhat.com/show_bug.cgi?id=1628389
- https://bugzilla.redhat.com/show_bug.cgi?id=1633260
- https://bugzilla.redhat.com/show_bug.cgi?id=1633399
- https://bugzilla.redhat.com/show_bug.cgi?id=1634830
- https://bugzilla.redhat.com/show_bug.cgi?id=1640722
- https://bugzilla.redhat.com/show_bug.cgi?id=1646937
- https://bugzilla.redhat.com/show_bug.cgi?id=1648928
- https://access.redhat.com/security/data/csaf/v2/advisories/2018/rhsa-2018_3558.json
- https://access.redhat.com/security/cve/CVE-2016-5419
- https://www.cve.org/CVERecord?id=CVE-2016-5419
- https://nvd.nist.gov/vuln/detail/CVE-2016-5419
- https://curl.haxx.se/docs/adv_20160803A.html
- https://access.redhat.com/security/cve/CVE-2016-5420
- https://www.cve.org/CVERecord?id=CVE-2016-5420
- https://nvd.nist.gov/vuln/detail/CVE-2016-5420
- https://curl.haxx.se/docs/adv_20160803B.html
- https://access.redhat.com/security/cve/CVE-2016-5421
- https://www.cve.org/CVERecord?id=CVE-2016-5421
- https://nvd.nist.gov/vuln/detail/CVE-2016-5421
- https://curl.haxx.se/docs/adv_20160803C.html
- https://access.redhat.com/security/cve/CVE-2016-7141
- https://www.cve.org/CVERecord?id=CVE-2016-7141
- https://nvd.nist.gov/vuln/detail/CVE-2016-7141
- https://curl.haxx.se/docs/adv_20160907.html
- https://access.redhat.com/security/cve/CVE-2016-7167
- https://www.cve.org/CVERecord?id=CVE-2016-7167
- https://nvd.nist.gov/vuln/detail/CVE-2016-7167
- https://curl.haxx.se/docs/adv_20160914.html
- https://access.redhat.com/security/cve/CVE-2016-8615
- https://www.cve.org/CVERecord?id=CVE-2016-8615
- https://nvd.nist.gov/vuln/detail/CVE-2016-8615
- https://curl.haxx.se/docs/adv_20161102A.html
- https://access.redhat.com/security/cve/CVE-2016-8616
- https://www.cve.org/CVERecord?id=CVE-2016-8616
- https://nvd.nist.gov/vuln/detail/CVE-2016-8616
- https://curl.haxx.se/docs/adv_20161102B.html
- https://access.redhat.com/security/cve/CVE-2016-8617
- https://www.cve.org/CVERecord?id=CVE-2016-8617
- https://nvd.nist.gov/vuln/detail/CVE-2016-8617
- https://curl.haxx.se/docs/adv_20161102C.html
- https://access.redhat.com/security/cve/CVE-2016-8618
- https://www.cve.org/CVERecord?id=CVE-2016-8618
- https://nvd.nist.gov/vuln/detail/CVE-2016-8618
- https://curl.haxx.se/docs/adv_20161102D.html
- https://access.redhat.com/security/cve/CVE-2016-8619
- https://www.cve.org/CVERecord?id=CVE-2016-8619
- https://nvd.nist.gov/vuln/detail/CVE-2016-8619
- https://curl.haxx.se/docs/adv_20161102E.html
- https://access.redhat.com/security/cve/CVE-2016-8620
- https://www.cve.org/CVERecord?id=CVE-2016-8620
- https://nvd.nist.gov/vuln/detail/CVE-2016-8620
- https://curl.haxx.se/docs/adv_20161102F.html
- https://access.redhat.com/security/cve/CVE-2016-8621
- https://www.cve.org/CVERecord?id=CVE-2016-8621
- https://nvd.nist.gov/vuln/detail/CVE-2016-8621
- https://curl.haxx.se/docs/adv_20161102G.html
- https://access.redhat.com/security/cve/CVE-2016-8622
- https://www.cve.org/CVERecord?id=CVE-2016-8622
- https://nvd.nist.gov/vuln/detail/CVE-2016-8622
- https://curl.haxx.se/docs/adv_20161102H.html
- https://access.redhat.com/security/cve/CVE-2016-8623
- https://www.cve.org/CVERecord?id=CVE-2016-8623
- https://nvd.nist.gov/vuln/detail/CVE-2016-8623
- https://curl.haxx.se/docs/adv_20161102I.html
- https://access.redhat.com/security/cve/CVE-2016-8624
- https://www.cve.org/CVERecord?id=CVE-2016-8624
- https://nvd.nist.gov/vuln/detail/CVE-2016-8624
- https://curl.haxx.se/docs/adv_20161102J.html
- https://access.redhat.com/security/cve/CVE-2016-8625
- https://www.cve.org/CVERecord?id=CVE-2016-8625
- https://nvd.nist.gov/vuln/detail/CVE-2016-8625
- https://curl.haxx.se/docs/adv_20161102K.html
- https://access.redhat.com/security/cve/CVE-2016-9586
- https://www.cve.org/CVERecord?id=CVE-2016-9586
- https://nvd.nist.gov/vuln/detail/CVE-2016-9586
- https://curl.haxx.se/docs/adv_20161221A.html
- https://access.redhat.com/security/cve/CVE-2017-7407
- https://www.cve.org/CVERecord?id=CVE-2017-7407
- https://nvd.nist.gov/vuln/detail/CVE-2017-7407
- https://curl.haxx.se/docs/adv_20170403.html
- https://access.redhat.com/security/cve/CVE-2017-8816
- https://www.cve.org/CVERecord?id=CVE-2017-8816
- https://nvd.nist.gov/vuln/detail/CVE-2017-8816
- https://curl.haxx.se/docs/adv_2017-12e7.html
- https://access.redhat.com/security/cve/CVE-2017-8817
- https://www.cve.org/CVERecord?id=CVE-2017-8817
- https://nvd.nist.gov/vuln/detail/CVE-2017-8817
- https://curl.haxx.se/docs/adv_2017-ae72.html
- https://access.redhat.com/security/cve/CVE-2017-15710
- https://www.cve.org/CVERecord?id=CVE-2017-15710
- https://nvd.nist.gov/vuln/detail/CVE-2017-15710
- https://httpd.apache.org/security/vulnerabilities_24.html
- https://access.redhat.com/security/cve/CVE-2017-15715
- https://www.cve.org/CVERecord?id=CVE-2017-15715
- https://nvd.nist.gov/vuln/detail/CVE-2017-15715
- https://access.redhat.com/security/cve/CVE-2017-1000100
- https://www.cve.org/CVERecord?id=CVE-2017-1000100
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000100
- https://curl.haxx.se/docs/adv_20170809B.html
- https://access.redhat.com/security/cve/CVE-2017-1000101
- https://www.cve.org/CVERecord?id=CVE-2017-1000101
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000101
- https://curl.haxx.se/docs/adv_20170809A.html
- https://access.redhat.com/security/cve/CVE-2017-1000254
- https://www.cve.org/CVERecord?id=CVE-2017-1000254
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000254
- https://curl.haxx.se/docs/adv_20171004.html
- https://access.redhat.com/security/cve/CVE-2017-1000257
- https://www.cve.org/CVERecord?id=CVE-2017-1000257
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000257
- https://curl.haxx.se/docs/adv_20171023.html
- https://access.redhat.com/security/cve/CVE-2018-1283
- https://www.cve.org/CVERecord?id=CVE-2018-1283
- https://nvd.nist.gov/vuln/detail/CVE-2018-1283
- https://access.redhat.com/security/cve/CVE-2018-1301
- https://www.cve.org/CVERecord?id=CVE-2018-1301
- https://nvd.nist.gov/vuln/detail/CVE-2018-1301
- https://access.redhat.com/security/cve/CVE-2018-1303
- https://www.cve.org/CVERecord?id=CVE-2018-1303
- https://nvd.nist.gov/vuln/detail/CVE-2018-1303
- https://access.redhat.com/security/cve/CVE-2018-1312
- https://www.cve.org/CVERecord?id=CVE-2018-1312
- https://nvd.nist.gov/vuln/detail/CVE-2018-1312
- https://access.redhat.com/security/cve/CVE-2018-1333
- https://www.cve.org/CVERecord?id=CVE-2018-1333
- https://nvd.nist.gov/vuln/detail/CVE-2018-1333
- https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2018-1333
- https://access.redhat.com/security/cve/CVE-2018-11763
- https://www.cve.org/CVERecord?id=CVE-2018-11763
- https://nvd.nist.gov/vuln/detail/CVE-2018-11763
- https://access.redhat.com/security/cve/CVE-2018-14618
- https://www.cve.org/CVERecord?id=CVE-2018-14618
- https://nvd.nist.gov/vuln/detail/CVE-2018-14618
- https://curl.haxx.se/docs/CVE-2018-14618.html
- https://access.redhat.com/security/cve/CVE-2018-1000007
- https://www.cve.org/CVERecord?id=CVE-2018-1000007
- https://nvd.nist.gov/vuln/detail/CVE-2018-1000007
- https://curl.haxx.se/docs/adv_2018-b3bf.html
- https://access.redhat.com/security/cve/CVE-2018-1000120
- https://www.cve.org/CVERecord?id=CVE-2018-1000120
- https://nvd.nist.gov/vuln/detail/CVE-2018-1000120
- https://curl.haxx.se/docs/adv_2018-9cd6.html
- https://access.redhat.com/security/cve/CVE-2018-1000121
- https://www.cve.org/CVERecord?id=CVE-2018-1000121
- https://nvd.nist.gov/vuln/detail/CVE-2018-1000121
- https://curl.haxx.se/docs/adv_2018-97a2.html
- https://access.redhat.com/security/cve/CVE-2018-1000122
- https://www.cve.org/CVERecord?id=CVE-2018-1000122
- https://nvd.nist.gov/vuln/detail/CVE-2018-1000122
- https://curl.haxx.se/docs/adv_2018-b047.html
- https://access.redhat.com/security/cve/CVE-2018-1000301
- https://www.cve.org/CVERecord?id=CVE-2018-1000301
- https://nvd.nist.gov/vuln/detail/CVE-2018-1000301
- https://curl.haxx.se/docs/adv_2018-b138.html
Affected packages
Red Hat:rhel_software_collections:3::el6 / httpd24-curl
Package
- Name
- httpd24-curl
- Purl
- pkg:rpm/redhat/httpd24-curl
Red Hat:rhel_software_collections:3::el6 / httpd24-curl-debuginfo
Package
- Name
- httpd24-curl-debuginfo
- Purl
- pkg:rpm/redhat/httpd24-curl-debuginfo
Red Hat:rhel_software_collections:3::el6 / httpd24-httpd
Package
- Name
- httpd24-httpd
- Purl
- pkg:rpm/redhat/httpd24-httpd
Red Hat:rhel_software_collections:3::el6 / httpd24-httpd-debuginfo
Package
- Name
- httpd24-httpd-debuginfo
- Purl
- pkg:rpm/redhat/httpd24-httpd-debuginfo
Red Hat:rhel_software_collections:3::el6 / httpd24-httpd-devel
Package
- Name
- httpd24-httpd-devel
- Purl
- pkg:rpm/redhat/httpd24-httpd-devel
Red Hat:rhel_software_collections:3::el6 / httpd24-httpd-manual
Package
- Name
- httpd24-httpd-manual
- Purl
- pkg:rpm/redhat/httpd24-httpd-manual
Red Hat:rhel_software_collections:3::el6 / httpd24-httpd-tools
Package
- Name
- httpd24-httpd-tools
- Purl
- pkg:rpm/redhat/httpd24-httpd-tools
Red Hat:rhel_software_collections:3::el6 / httpd24-libcurl
Package
- Name
- httpd24-libcurl
- Purl
- pkg:rpm/redhat/httpd24-libcurl
Red Hat:rhel_software_collections:3::el6 / httpd24-libcurl-devel
Package
- Name
- httpd24-libcurl-devel
- Purl
- pkg:rpm/redhat/httpd24-libcurl-devel
Red Hat:rhel_software_collections:3::el6 / httpd24-libnghttp2
Package
- Name
- httpd24-libnghttp2
- Purl
- pkg:rpm/redhat/httpd24-libnghttp2
Red Hat:rhel_software_collections:3::el6 / httpd24-libnghttp2-devel
Package
- Name
- httpd24-libnghttp2-devel
- Purl
- pkg:rpm/redhat/httpd24-libnghttp2-devel
Red Hat:rhel_software_collections:3::el6 / httpd24-mod_ldap
Package
- Name
- httpd24-mod_ldap
- Purl
- pkg:rpm/redhat/httpd24-mod_ldap
Red Hat:rhel_software_collections:3::el6 / httpd24-mod_proxy_html
Package
- Name
- httpd24-mod_proxy_html
- Purl
- pkg:rpm/redhat/httpd24-mod_proxy_html
Red Hat:rhel_software_collections:3::el6 / httpd24-mod_session
Package
- Name
- httpd24-mod_session
- Purl
- pkg:rpm/redhat/httpd24-mod_session
Red Hat:rhel_software_collections:3::el6 / httpd24-mod_ssl
Package
- Name
- httpd24-mod_ssl
- Purl
- pkg:rpm/redhat/httpd24-mod_ssl
Red Hat:rhel_software_collections:3::el6 / httpd24-nghttp2
Package
- Name
- httpd24-nghttp2
- Purl
- pkg:rpm/redhat/httpd24-nghttp2
Red Hat:rhel_software_collections:3::el6 / httpd24-nghttp2-debuginfo
Package
- Name
- httpd24-nghttp2-debuginfo
- Purl
- pkg:rpm/redhat/httpd24-nghttp2-debuginfo
Red Hat:rhel_software_collections:3::el7 / httpd24-curl
Package
- Name
- httpd24-curl
- Purl
- pkg:rpm/redhat/httpd24-curl
Red Hat:rhel_software_collections:3::el7 / httpd24-curl-debuginfo
Package
- Name
- httpd24-curl-debuginfo
- Purl
- pkg:rpm/redhat/httpd24-curl-debuginfo
Red Hat:rhel_software_collections:3::el7 / httpd24-httpd
Package
- Name
- httpd24-httpd
- Purl
- pkg:rpm/redhat/httpd24-httpd
Red Hat:rhel_software_collections:3::el7 / httpd24-httpd-debuginfo
Package
- Name
- httpd24-httpd-debuginfo
- Purl
- pkg:rpm/redhat/httpd24-httpd-debuginfo
Red Hat:rhel_software_collections:3::el7 / httpd24-httpd-devel
Package
- Name
- httpd24-httpd-devel
- Purl
- pkg:rpm/redhat/httpd24-httpd-devel
Red Hat:rhel_software_collections:3::el7 / httpd24-httpd-manual
Package
- Name
- httpd24-httpd-manual
- Purl
- pkg:rpm/redhat/httpd24-httpd-manual
Red Hat:rhel_software_collections:3::el7 / httpd24-httpd-tools
Package
- Name
- httpd24-httpd-tools
- Purl
- pkg:rpm/redhat/httpd24-httpd-tools
Red Hat:rhel_software_collections:3::el7 / httpd24-libcurl
Package
- Name
- httpd24-libcurl
- Purl
- pkg:rpm/redhat/httpd24-libcurl
Red Hat:rhel_software_collections:3::el7 / httpd24-libcurl-devel
Package
- Name
- httpd24-libcurl-devel
- Purl
- pkg:rpm/redhat/httpd24-libcurl-devel
Red Hat:rhel_software_collections:3::el7 / httpd24-libnghttp2
Package
- Name
- httpd24-libnghttp2
- Purl
- pkg:rpm/redhat/httpd24-libnghttp2
Red Hat:rhel_software_collections:3::el7 / httpd24-libnghttp2-devel
Package
- Name
- httpd24-libnghttp2-devel
- Purl
- pkg:rpm/redhat/httpd24-libnghttp2-devel
Red Hat:rhel_software_collections:3::el7 / httpd24-mod_ldap
Package
- Name
- httpd24-mod_ldap
- Purl
- pkg:rpm/redhat/httpd24-mod_ldap
Red Hat:rhel_software_collections:3::el7 / httpd24-mod_md
Package
- Name
- httpd24-mod_md
- Purl
- pkg:rpm/redhat/httpd24-mod_md
Red Hat:rhel_software_collections:3::el7 / httpd24-mod_proxy_html
Package
- Name
- httpd24-mod_proxy_html
- Purl
- pkg:rpm/redhat/httpd24-mod_proxy_html
Red Hat:rhel_software_collections:3::el7 / httpd24-mod_session
Package
- Name
- httpd24-mod_session
- Purl
- pkg:rpm/redhat/httpd24-mod_session
Red Hat:rhel_software_collections:3::el7 / httpd24-mod_ssl
Package
- Name
- httpd24-mod_ssl
- Purl
- pkg:rpm/redhat/httpd24-mod_ssl
Red Hat:rhel_software_collections:3::el7 / httpd24-nghttp2
Package
- Name
- httpd24-nghttp2
- Purl
- pkg:rpm/redhat/httpd24-nghttp2