- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
11-16-2023 01:17 AM - edited 05-23-2024 09:41 AM
Guidance for Apache HTTP Server 2.4 vulnerabilities described in the official apache.org site: https://httpd.apache.org/security/vulnerabilities_24.html
Affected version:Fix for CVE detected on Apache HTTP Server 2.4 versions from 2.4.1 to 2.4.59.
Update 2.4.59 released | 2024-04-04 |
Affects | <=2.4.58 |
Execute below command to check the version of Apache HTTP Server 2.4:
sudo apt list --installed | grep apache
If the output showing version less than 2.4.59, you will need to perform the steps to upgrade the apache2 libraries.
Prerequisites: Your Expedition VM should have connectivity to http://ppa.launchpad.net and subdomains. ONLY required to do the libraries upgrade.
Note: Optionally consider to take an snapshot of your VM.
In Expedition CLI execute below commands:
apache2-bin/focal,now 2.4.59-1+ubuntu20.04.1+deb.sury.org+1 amd64 [installed,automatic]
apache2-data/focal,now 2.4.59-1+ubuntu20.04.1+deb.sury.org+1 all [installed,automatic]
apache2-utils/focal,now 2.4.59-1+ubuntu20.04.1+deb.sury.org+1 amd64 [installed,automatic]
apache2/focal,now 2.4.59-1+ubuntu20.04.1+deb.sury.org+1 amd64 [installed]
libapache2-mod-php7.0/now 7.0.33-57+ubuntu20.04.1+deb.sury.org+1 amd64 [installed,upgradable to: 7.0.33-74+ubuntu20.04.1+deb.sury.org+1]