Vulnerability Database
Blog
FAQ
Docs
RHSA-2022:7143
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2022:7143
Import Source
https://security.access.redhat.com/data/osv/RHSA-2022:7143.json
JSON Data
https://api.osv.dev/v1/vulns/RHSA-2022:7143
Related
CVE-2021-33193
CVE-2021-36160
CVE-2021-39275
CVE-2021-41524
CVE-2021-44224
Published
2024-09-13T20:33:46Z
Modified
2024-09-13T20:33:46Z
Severity
8.1 (High)
CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS Calculator
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 security update
Details
References
https://access.redhat.com/errata/RHSA-2022:7143
https://access.redhat.com/security/updates/classification/#moderate
https://access.redhat.com/documentation/en-us/red_hat_jboss_core_services/2.4.51/html-single/red_hat_jboss_core_services_apache_http_server_2.4.51_release_notes/index
https://bugzilla.redhat.com/show_bug.cgi?id=1966728
https://bugzilla.redhat.com/show_bug.cgi?id=2005119
https://bugzilla.redhat.com/show_bug.cgi?id=2005124
https://bugzilla.redhat.com/show_bug.cgi?id=2010934
https://bugzilla.redhat.com/show_bug.cgi?id=2034672
https://access.redhat.com/security/data/csaf/v2/advisories/2022/rhsa-2022_7143.json
https://access.redhat.com/security/cve/CVE-2021-33193
https://www.cve.org/CVERecord?id=CVE-2021-33193
https://nvd.nist.gov/vuln/detail/CVE-2021-33193
https://portswigger.net/research/http2
https://access.redhat.com/security/cve/CVE-2021-36160
https://www.cve.org/CVERecord?id=CVE-2021-36160
https://nvd.nist.gov/vuln/detail/CVE-2021-36160
https://access.redhat.com/security/cve/CVE-2021-39275
https://www.cve.org/CVERecord?id=CVE-2021-39275
https://nvd.nist.gov/vuln/detail/CVE-2021-39275
https://access.redhat.com/security/cve/CVE-2021-41524
https://www.cve.org/CVERecord?id=CVE-2021-41524
https://nvd.nist.gov/vuln/detail/CVE-2021-41524
https://httpd.apache.org/security/vulnerabilities_24.html
https://access.redhat.com/security/cve/CVE-2021-44224
https://www.cve.org/CVERecord?id=CVE-2021-44224
https://nvd.nist.gov/vuln/detail/CVE-2021-44224
http://httpd.apache.org/security/vulnerabilities_24.html
Affected packages
Red Hat:jboss_core_services:1::el7
/
jbcs-httpd24-httpd
Package
Name
jbcs-httpd24-httpd
Purl
pkg:rpm/redhat/jbcs-httpd24-httpd
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el7jbcs
Red Hat:jboss_core_services:1::el7
/
jbcs-httpd24-httpd-debuginfo
Package
Name
jbcs-httpd24-httpd-debuginfo
Purl
pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el7jbcs
Red Hat:jboss_core_services:1::el7
/
jbcs-httpd24-httpd-devel
Package
Name
jbcs-httpd24-httpd-devel
Purl
pkg:rpm/redhat/jbcs-httpd24-httpd-devel
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el7jbcs
Red Hat:jboss_core_services:1::el7
/
jbcs-httpd24-httpd-manual
Package
Name
jbcs-httpd24-httpd-manual
Purl
pkg:rpm/redhat/jbcs-httpd24-httpd-manual
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el7jbcs
Red Hat:jboss_core_services:1::el7
/
jbcs-httpd24-httpd-selinux
Package
Name
jbcs-httpd24-httpd-selinux
Purl
pkg:rpm/redhat/jbcs-httpd24-httpd-selinux
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el7jbcs
Red Hat:jboss_core_services:1::el7
/
jbcs-httpd24-httpd-tools
Package
Name
jbcs-httpd24-httpd-tools
Purl
pkg:rpm/redhat/jbcs-httpd24-httpd-tools
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el7jbcs
Red Hat:jboss_core_services:1::el7
/
jbcs-httpd24-mod_ldap
Package
Name
jbcs-httpd24-mod_ldap
Purl
pkg:rpm/redhat/jbcs-httpd24-mod_ldap
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el7jbcs
Red Hat:jboss_core_services:1::el7
/
jbcs-httpd24-mod_proxy_html
Package
Name
jbcs-httpd24-mod_proxy_html
Purl
pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:2.4.51-28.el7jbcs
Red Hat:jboss_core_services:1::el7
/
jbcs-httpd24-mod_session
Package
Name
jbcs-httpd24-mod_session
Purl
pkg:rpm/redhat/jbcs-httpd24-mod_session
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el7jbcs
Red Hat:jboss_core_services:1::el7
/
jbcs-httpd24-mod_ssl
Package
Name
jbcs-httpd24-mod_ssl
Purl
pkg:rpm/redhat/jbcs-httpd24-mod_ssl
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:2.4.51-28.el7jbcs
Red Hat:jboss_core_services:1::el8
/
jbcs-httpd24-httpd
Package
Name
jbcs-httpd24-httpd
Purl
pkg:rpm/redhat/jbcs-httpd24-httpd
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el8jbcs
Red Hat:jboss_core_services:1::el8
/
jbcs-httpd24-httpd-debuginfo
Package
Name
jbcs-httpd24-httpd-debuginfo
Purl
pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el8jbcs
Red Hat:jboss_core_services:1::el8
/
jbcs-httpd24-httpd-devel
Package
Name
jbcs-httpd24-httpd-devel
Purl
pkg:rpm/redhat/jbcs-httpd24-httpd-devel
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el8jbcs
Red Hat:jboss_core_services:1::el8
/
jbcs-httpd24-httpd-manual
Package
Name
jbcs-httpd24-httpd-manual
Purl
pkg:rpm/redhat/jbcs-httpd24-httpd-manual
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el8jbcs
Red Hat:jboss_core_services:1::el8
/
jbcs-httpd24-httpd-selinux
Package
Name
jbcs-httpd24-httpd-selinux
Purl
pkg:rpm/redhat/jbcs-httpd24-httpd-selinux
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el8jbcs
Red Hat:jboss_core_services:1::el8
/
jbcs-httpd24-httpd-tools
Package
Name
jbcs-httpd24-httpd-tools
Purl
pkg:rpm/redhat/jbcs-httpd24-httpd-tools
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el8jbcs
Red Hat:jboss_core_services:1::el8
/
jbcs-httpd24-httpd-tools-debuginfo
Package
Name
jbcs-httpd24-httpd-tools-debuginfo
Purl
pkg:rpm/redhat/jbcs-httpd24-httpd-tools-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el8jbcs
Red Hat:jboss_core_services:1::el8
/
jbcs-httpd24-mod_ldap
Package
Name
jbcs-httpd24-mod_ldap
Purl
pkg:rpm/redhat/jbcs-httpd24-mod_ldap
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el8jbcs
Red Hat:jboss_core_services:1::el8
/
jbcs-httpd24-mod_ldap-debuginfo
Package
Name
jbcs-httpd24-mod_ldap-debuginfo
Purl
pkg:rpm/redhat/jbcs-httpd24-mod_ldap-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el8jbcs
Red Hat:jboss_core_services:1::el8
/
jbcs-httpd24-mod_proxy_html
Package
Name
jbcs-httpd24-mod_proxy_html
Purl
pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:2.4.51-28.el8jbcs
Red Hat:jboss_core_services:1::el8
/
jbcs-httpd24-mod_proxy_html-debuginfo
Package
Name
jbcs-httpd24-mod_proxy_html-debuginfo
Purl
pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:2.4.51-28.el8jbcs
Red Hat:jboss_core_services:1::el8
/
jbcs-httpd24-mod_session
Package
Name
jbcs-httpd24-mod_session
Purl
pkg:rpm/redhat/jbcs-httpd24-mod_session
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el8jbcs
Red Hat:jboss_core_services:1::el8
/
jbcs-httpd24-mod_session-debuginfo
Package
Name
jbcs-httpd24-mod_session-debuginfo
Purl
pkg:rpm/redhat/jbcs-httpd24-mod_session-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.51-28.el8jbcs
Red Hat:jboss_core_services:1::el8
/
jbcs-httpd24-mod_ssl
Package
Name
jbcs-httpd24-mod_ssl
Purl
pkg:rpm/redhat/jbcs-httpd24-mod_ssl
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:2.4.51-28.el8jbcs
Red Hat:jboss_core_services:1::el8
/
jbcs-httpd24-mod_ssl-debuginfo
Package
Name
jbcs-httpd24-mod_ssl-debuginfo
Purl
pkg:rpm/redhat/jbcs-httpd24-mod_ssl-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:2.4.51-28.el8jbcs
RHSA-2022:7143 - OSV