Open Source Development

Power Open Source Development

Explore the open source tools and capabilities for building and deploying modern applications on IBM Power platforms including AIX, IBM i, and Linux.


#Power


#Power

 View Only

  • 1.  Need HTTP 2.4.49 due to CVE(s): CVE-2021-34798, CVE-2021-40438

    Posted Fri November 05, 2021 04:44 AM

    Hi
    my security department advised to update soon to httpd 2.4.49 on my AIX Box because auf CVE(s): CVE-2021-34798, CVE-2021-40438
    On AIX Toolbox there is only 2.4.48 as the latest level available. Can you provide an update please asap ?

    thx
    vince



    ------------------------------
    Vincencio Michaelis
    ------------------------------

    #AIXOpenSource


  • 2.  RE: Need HTTP 2.4.49 due to CVE(s): CVE-2021-34798, CVE-2021-40438

    Posted Mon November 08, 2021 03:38 AM
    Bump.

    Same issue here, the current version triggers Nessus alerts.

    ------------------------------
    Niël Lambrechts
    ------------------------------

    Original Message


  • 3.  RE: Need HTTP 2.4.49 due to CVE(s): CVE-2021-34798, CVE-2021-40438

    Posted Mon November 08, 2021 11:37 PM
    Hi,
    We are already working on httpd 2.4.50 and are waiting for legal approval to publish the rpms.

    ------------------------------
    RESHMA KUMAR
    ------------------------------

    Original Message


  • 4.  RE: Need HTTP 2.4.49 due to CVE(s): CVE-2021-34798, CVE-2021-40438

    Posted Mon November 15, 2021 10:27 AM
    Edited by SANKET RATHI Mon November 15, 2021 11:08 AM
    httpd-2.4.51 is now published from AIX toolbox repo. This fixes mentioned vulnerabilities.

    ------------------------------
    SANKET RATHI
    ------------------------------

    Original Message


Related Content