RHSA-2018:3558
Advisory lineage Upstream: 38 Downstream: 0
Published: 13 Sept 2024, 16:54
Last modified:15 May 2026, 10:05
Vulnerability Summary
Overall Risk (default)
medium
32/100 CVSS Score
8.1 HIGH
3.1 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
13 Sept 2024, 16:54
Published
Vulnerability first disclosed
15 May 2026, 10:05
Last Modified
Vulnerability information updated
Description
Red Hat Security Advisory: httpd24 security, bug fix, and enhancement update
CVSS Metrics
- v3.1•HIGH•Score: 8.1CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Systems
- redhat•httpd24-curl
< 0:7.61.1-1.el6 | < 0:7.61.1-1.el7
- redhat•httpd24-curl-debuginfo
< 0:7.61.1-1.el6 | < 0:7.61.1-1.el7
- redhat•httpd24-httpd
< 0:2.4.34-7.el6 | < 0:2.4.34-7.el7
- redhat•httpd24-httpd-debuginfo
< 0:2.4.34-7.el6 | < 0:2.4.34-7.el7
- redhat•httpd24-httpd-devel
< 0:2.4.34-7.el6 | < 0:2.4.34-7.el7
- redhat•httpd24-httpd-manual
< 0:2.4.34-7.el6 | < 0:2.4.34-7.el7
- redhat•httpd24-httpd-tools
< 0:2.4.34-7.el6 | < 0:2.4.34-7.el7
- redhat•httpd24-libcurl
< 0:7.61.1-1.el6 | < 0:7.61.1-1.el7
- redhat•httpd24-libcurl-devel
< 0:7.61.1-1.el6 | < 0:7.61.1-1.el7
- redhat•httpd24-libnghttp2
< 0:1.7.1-7.el6 | < 0:1.7.1-7.el7
- redhat•httpd24-libnghttp2-devel
< 0:1.7.1-7.el6 | < 0:1.7.1-7.el7
- redhat•httpd24-mod_ldap
< 0:2.4.34-7.el6 | < 0:2.4.34-7.el7
- redhat•httpd24-mod_md
< 0:2.4.34-7.el7
- redhat•httpd24-mod_proxy_html
< 1:2.4.34-7.el6 | < 1:2.4.34-7.el7
- redhat•httpd24-mod_session
< 0:2.4.34-7.el6 | < 0:2.4.34-7.el7
- redhat•httpd24-mod_ssl
< 1:2.4.34-7.el6 | < 1:2.4.34-7.el7
- redhat•httpd24-nghttp2
< 0:1.7.1-7.el6 | < 0:1.7.1-7.el7
- redhat•httpd24-nghttp2-debuginfo
< 0:1.7.1-7.el6 | < 0:1.7.1-7.el7
References (197)
- https://access.redhat.com/errata/RHSA-2018:3558
- https://access.redhat.com/security/updates/classification/#moderate
- https://access.redhat.com/documentation/en-us/red_hat_software_collections/3/html/3.2_release_notes/chap-rhscl#sect-RHSCL-Changes-httpd
- https://bugzilla.redhat.com/show_bug.cgi?id=1362183
- https://bugzilla.redhat.com/show_bug.cgi?id=1362190
- https://bugzilla.redhat.com/show_bug.cgi?id=1362199
- https://bugzilla.redhat.com/show_bug.cgi?id=1373229
- https://bugzilla.redhat.com/show_bug.cgi?id=1375906
- https://bugzilla.redhat.com/show_bug.cgi?id=1388370
- https://bugzilla.redhat.com/show_bug.cgi?id=1388371
- https://bugzilla.redhat.com/show_bug.cgi?id=1388377
- https://bugzilla.redhat.com/show_bug.cgi?id=1388378
- https://bugzilla.redhat.com/show_bug.cgi?id=1388379
- https://bugzilla.redhat.com/show_bug.cgi?id=1388382
- https://bugzilla.redhat.com/show_bug.cgi?id=1388385
- https://bugzilla.redhat.com/show_bug.cgi?id=1388386
- https://bugzilla.redhat.com/show_bug.cgi?id=1388388
- https://bugzilla.redhat.com/show_bug.cgi?id=1388390
- https://bugzilla.redhat.com/show_bug.cgi?id=1388392
- https://bugzilla.redhat.com/show_bug.cgi?id=1406712
- https://bugzilla.redhat.com/show_bug.cgi?id=1439190
- https://bugzilla.redhat.com/show_bug.cgi?id=1478309
- https://bugzilla.redhat.com/show_bug.cgi?id=1478310
- https://bugzilla.redhat.com/show_bug.cgi?id=1495541
- https://bugzilla.redhat.com/show_bug.cgi?id=1503705
- https://bugzilla.redhat.com/show_bug.cgi?id=1515757
- https://bugzilla.redhat.com/show_bug.cgi?id=1515760
- https://bugzilla.redhat.com/show_bug.cgi?id=1518737
- https://bugzilla.redhat.com/show_bug.cgi?id=1537125
- https://bugzilla.redhat.com/show_bug.cgi?id=1540167
- https://bugzilla.redhat.com/show_bug.cgi?id=1552628
- https://bugzilla.redhat.com/show_bug.cgi?id=1552631
- https://bugzilla.redhat.com/show_bug.cgi?id=1553398
- https://bugzilla.redhat.com/show_bug.cgi?id=1558450
- https://bugzilla.redhat.com/show_bug.cgi?id=1560395
- https://bugzilla.redhat.com/show_bug.cgi?id=1560399
- https://bugzilla.redhat.com/show_bug.cgi?id=1560599
- https://bugzilla.redhat.com/show_bug.cgi?id=1560614
- https://bugzilla.redhat.com/show_bug.cgi?id=1560634
- https://bugzilla.redhat.com/show_bug.cgi?id=1560643
- https://bugzilla.redhat.com/show_bug.cgi?id=1575536
- https://bugzilla.redhat.com/show_bug.cgi?id=1605048
- https://bugzilla.redhat.com/show_bug.cgi?id=1622707
- https://bugzilla.redhat.com/show_bug.cgi?id=1628389
- https://bugzilla.redhat.com/show_bug.cgi?id=1633260
- https://bugzilla.redhat.com/show_bug.cgi?id=1633399
- https://bugzilla.redhat.com/show_bug.cgi?id=1634830
- https://bugzilla.redhat.com/show_bug.cgi?id=1640722
- https://bugzilla.redhat.com/show_bug.cgi?id=1646937
- https://bugzilla.redhat.com/show_bug.cgi?id=1648928
- https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_3558.json
- https://access.redhat.com/security/cve/CVE-2016-5419
- https://www.cve.org/CVERecord?id=CVE-2016-5419
- https://nvd.nist.gov/vuln/detail/CVE-2016-5419
- https://curl.haxx.se/docs/adv_20160803A.html
- https://access.redhat.com/security/cve/CVE-2016-5420
- https://www.cve.org/CVERecord?id=CVE-2016-5420
- https://nvd.nist.gov/vuln/detail/CVE-2016-5420
- https://curl.haxx.se/docs/adv_20160803B.html
- https://access.redhat.com/security/cve/CVE-2016-5421
- https://www.cve.org/CVERecord?id=CVE-2016-5421
- https://nvd.nist.gov/vuln/detail/CVE-2016-5421
- https://curl.haxx.se/docs/adv_20160803C.html
- https://access.redhat.com/security/cve/CVE-2016-7141
- https://www.cve.org/CVERecord?id=CVE-2016-7141
- https://nvd.nist.gov/vuln/detail/CVE-2016-7141
- https://curl.haxx.se/docs/adv_20160907.html
- https://access.redhat.com/security/cve/CVE-2016-7167
- https://www.cve.org/CVERecord?id=CVE-2016-7167
- https://nvd.nist.gov/vuln/detail/CVE-2016-7167
- https://curl.haxx.se/docs/adv_20160914.html
- https://access.redhat.com/security/cve/CVE-2016-8615
- https://www.cve.org/CVERecord?id=CVE-2016-8615
- https://nvd.nist.gov/vuln/detail/CVE-2016-8615
- https://curl.haxx.se/docs/adv_20161102A.html
- https://access.redhat.com/security/cve/CVE-2016-8616
- https://www.cve.org/CVERecord?id=CVE-2016-8616
- https://nvd.nist.gov/vuln/detail/CVE-2016-8616
- https://curl.haxx.se/docs/adv_20161102B.html
- https://access.redhat.com/security/cve/CVE-2016-8617
- https://www.cve.org/CVERecord?id=CVE-2016-8617
- https://nvd.nist.gov/vuln/detail/CVE-2016-8617
- https://curl.haxx.se/docs/adv_20161102C.html
- https://access.redhat.com/security/cve/CVE-2016-8618
- https://www.cve.org/CVERecord?id=CVE-2016-8618
- https://nvd.nist.gov/vuln/detail/CVE-2016-8618
- https://curl.haxx.se/docs/adv_20161102D.html
- https://access.redhat.com/security/cve/CVE-2016-8619
- https://www.cve.org/CVERecord?id=CVE-2016-8619
- https://nvd.nist.gov/vuln/detail/CVE-2016-8619
- https://curl.haxx.se/docs/adv_20161102E.html
- https://access.redhat.com/security/cve/CVE-2016-8620
- https://www.cve.org/CVERecord?id=CVE-2016-8620
- https://nvd.nist.gov/vuln/detail/CVE-2016-8620
- https://curl.haxx.se/docs/adv_20161102F.html
- https://access.redhat.com/security/cve/CVE-2016-8621
- https://www.cve.org/CVERecord?id=CVE-2016-8621
- https://nvd.nist.gov/vuln/detail/CVE-2016-8621
- https://curl.haxx.se/docs/adv_20161102G.html
- https://access.redhat.com/security/cve/CVE-2016-8622
- https://www.cve.org/CVERecord?id=CVE-2016-8622
- https://nvd.nist.gov/vuln/detail/CVE-2016-8622
- https://curl.haxx.se/docs/adv_20161102H.html
- https://access.redhat.com/security/cve/CVE-2016-8623
- https://www.cve.org/CVERecord?id=CVE-2016-8623
- https://nvd.nist.gov/vuln/detail/CVE-2016-8623
- https://curl.haxx.se/docs/adv_20161102I.html
- https://access.redhat.com/security/cve/CVE-2016-8624
- https://www.cve.org/CVERecord?id=CVE-2016-8624
- https://nvd.nist.gov/vuln/detail/CVE-2016-8624
- https://curl.haxx.se/docs/adv_20161102J.html
- https://access.redhat.com/security/cve/CVE-2016-8625
- https://www.cve.org/CVERecord?id=CVE-2016-8625
- https://nvd.nist.gov/vuln/detail/CVE-2016-8625
- https://curl.haxx.se/docs/adv_20161102K.html
- https://access.redhat.com/security/cve/CVE-2016-9586
- https://www.cve.org/CVERecord?id=CVE-2016-9586
- https://nvd.nist.gov/vuln/detail/CVE-2016-9586
- https://curl.haxx.se/docs/adv_20161221A.html
- https://access.redhat.com/security/cve/CVE-2017-7407
- https://www.cve.org/CVERecord?id=CVE-2017-7407
- https://nvd.nist.gov/vuln/detail/CVE-2017-7407
- https://curl.haxx.se/docs/adv_20170403.html
- https://access.redhat.com/security/cve/CVE-2017-8816
- https://www.cve.org/CVERecord?id=CVE-2017-8816
- https://nvd.nist.gov/vuln/detail/CVE-2017-8816
- https://curl.haxx.se/docs/adv_2017-12e7.html
- https://access.redhat.com/security/cve/CVE-2017-8817
- https://www.cve.org/CVERecord?id=CVE-2017-8817
- https://nvd.nist.gov/vuln/detail/CVE-2017-8817
- https://curl.haxx.se/docs/adv_2017-ae72.html
- https://access.redhat.com/security/cve/CVE-2017-15710
- https://www.cve.org/CVERecord?id=CVE-2017-15710
- https://nvd.nist.gov/vuln/detail/CVE-2017-15710
- https://httpd.apache.org/security/vulnerabilities_24.html
- https://access.redhat.com/security/cve/CVE-2017-15715
- https://www.cve.org/CVERecord?id=CVE-2017-15715
- https://nvd.nist.gov/vuln/detail/CVE-2017-15715
- https://access.redhat.com/security/cve/CVE-2017-1000100
- https://www.cve.org/CVERecord?id=CVE-2017-1000100
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000100
- https://curl.haxx.se/docs/adv_20170809B.html
- https://access.redhat.com/security/cve/CVE-2017-1000101
- https://www.cve.org/CVERecord?id=CVE-2017-1000101
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000101
- https://curl.haxx.se/docs/adv_20170809A.html
- https://access.redhat.com/security/cve/CVE-2017-1000254
- https://www.cve.org/CVERecord?id=CVE-2017-1000254
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000254
- https://curl.haxx.se/docs/adv_20171004.html
- https://access.redhat.com/security/cve/CVE-2017-1000257
- https://www.cve.org/CVERecord?id=CVE-2017-1000257
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000257
- https://curl.haxx.se/docs/adv_20171023.html
- https://access.redhat.com/security/cve/CVE-2018-1283
- https://www.cve.org/CVERecord?id=CVE-2018-1283
- https://nvd.nist.gov/vuln/detail/CVE-2018-1283
- https://access.redhat.com/security/cve/CVE-2018-1301
- https://www.cve.org/CVERecord?id=CVE-2018-1301
- https://nvd.nist.gov/vuln/detail/CVE-2018-1301
- https://access.redhat.com/security/cve/CVE-2018-1303
- https://www.cve.org/CVERecord?id=CVE-2018-1303
- https://nvd.nist.gov/vuln/detail/CVE-2018-1303
- https://access.redhat.com/security/cve/CVE-2018-1312
- https://www.cve.org/CVERecord?id=CVE-2018-1312
- https://nvd.nist.gov/vuln/detail/CVE-2018-1312
- https://access.redhat.com/security/cve/CVE-2018-1333
- https://www.cve.org/CVERecord?id=CVE-2018-1333
- https://nvd.nist.gov/vuln/detail/CVE-2018-1333
- https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2018-1333
- https://access.redhat.com/security/cve/CVE-2018-11763
- https://www.cve.org/CVERecord?id=CVE-2018-11763
- https://nvd.nist.gov/vuln/detail/CVE-2018-11763
- https://access.redhat.com/security/cve/CVE-2018-14618
- https://www.cve.org/CVERecord?id=CVE-2018-14618
- https://nvd.nist.gov/vuln/detail/CVE-2018-14618
- https://curl.haxx.se/docs/CVE-2018-14618.html
- https://access.redhat.com/security/cve/CVE-2018-1000007
- https://www.cve.org/CVERecord?id=CVE-2018-1000007
- https://nvd.nist.gov/vuln/detail/CVE-2018-1000007
- https://curl.haxx.se/docs/adv_2018-b3bf.html
- https://access.redhat.com/security/cve/CVE-2018-1000120
- https://www.cve.org/CVERecord?id=CVE-2018-1000120
- https://nvd.nist.gov/vuln/detail/CVE-2018-1000120
- https://curl.haxx.se/docs/adv_2018-9cd6.html
- https://access.redhat.com/security/cve/CVE-2018-1000121
- https://www.cve.org/CVERecord?id=CVE-2018-1000121
- https://nvd.nist.gov/vuln/detail/CVE-2018-1000121
- https://curl.haxx.se/docs/adv_2018-97a2.html
- https://access.redhat.com/security/cve/CVE-2018-1000122
- https://www.cve.org/CVERecord?id=CVE-2018-1000122
- https://nvd.nist.gov/vuln/detail/CVE-2018-1000122
- https://curl.haxx.se/docs/adv_2018-b047.html
- https://access.redhat.com/security/cve/CVE-2018-1000301
- https://www.cve.org/CVERecord?id=CVE-2018-1000301
- https://nvd.nist.gov/vuln/detail/CVE-2018-1000301
- https://curl.haxx.se/docs/adv_2018-b138.html