AIX Open Source

AIX Open Source

Share your experiences and connect with fellow developers to discover how to build and manage open source software for the AIX operating system

 View Only

  • 1.  Need HTTP 2.4.49 due to CVE(s): CVE-2021-34798, CVE-2021-40438

    Posted Fri November 05, 2021 04:44 AM

    Hi
    my security department advised to update soon to httpd 2.4.49 on my AIX Box because auf CVE(s): CVE-2021-34798, CVE-2021-40438
    On AIX Toolbox there is only 2.4.48 as the latest level available. Can you provide an update please asap ?

    thx
    vince



    ------------------------------
    Vincencio Michaelis
    ------------------------------


  • 2.  RE: Need HTTP 2.4.49 due to CVE(s): CVE-2021-34798, CVE-2021-40438

    Posted Mon November 08, 2021 03:38 AM
    Bump.

    Same issue here, the current version triggers Nessus alerts.

    ------------------------------
    Niël Lambrechts
    ------------------------------

    Original Message


  • 3.  RE: Need HTTP 2.4.49 due to CVE(s): CVE-2021-34798, CVE-2021-40438

    Posted Mon November 08, 2021 11:37 PM
    Hi,
    We are already working on httpd 2.4.50 and are waiting for legal approval to publish the rpms.

    ------------------------------
    RESHMA KUMAR
    ------------------------------

    Original Message


  • 4.  RE: Need HTTP 2.4.49 due to CVE(s): CVE-2021-34798, CVE-2021-40438

    Posted Mon November 15, 2021 10:27 AM
    Edited by SANKET RATHI Mon November 15, 2021 11:08 AM
    httpd-2.4.51 is now published from AIX toolbox repo. This fixes mentioned vulnerabilities.

    ------------------------------
    SANKET RATHI
    ------------------------------

    Original Message


Related Content