| Name: | mod_http2 |
|---|---|
| Version: | 1.15.7 |
| Release: | 10.module+el8.10.0+90652+bef864ba.4 |
| Architecture: | aarch64 |
| Module: | httpd:2.4:8100020250411144918:489197e6 httpd:2.4:8100020250728150834:10 httpd:2.4:8100020251223124945:8100020250728150834 |
| Group: | System Environment/Daemons |
| Size: | 418678 |
| License: | ASL 2.0 |
| RPM: | mod_http2-1.15.7-10.module+el8.10.0+90652+bef864ba.4.aarch64.rpm |
| Source RPM: | mod_http2-1.15.7-10.module+el8.10.0+90652+bef864ba.4.src.rpm |
| Build Date: | Thu Sep 04 2025 |
| Build Host: | build-ol8-aarch64.oracle.com |
| Vendor: | Oracle America |
| URL: | https://icing.github.io/mod_h2/ |
| Summary: | module implementing HTTP/2 for Apache 2 |
| Description: | The mod_h2 Apache httpd module implements the HTTP2 protocol (h2+h2c) on top of libnghttp2 for httpd 2.4 servers. |
- Resolves: RHEL-105186 - httpd:2.4/httpd: untrusted input from a client causes an assertion to fail in the Apache mod_proxy_http2 module (CVE-2025-49630)
- Resolves: RHEL-58454 - mod_proxy_http2 failures after CVE-2024-38477 fix - Resolves: RHEL-59017 - random failures in other requests on http/2 stream when client resets one request
- Resolves: RHEL-71575: Wrong Content-Type when proxying using H2 protocol
- Resolves: RHEL-46214 - Access logs and ErrorDocument don't work when HTTP431 occurs using http/2 on RHEL8
- Resolves: RHEL-29817 - httpd:2.4/mod_http2: httpd: CONTINUATION frames DoS (CVE-2024-27316)
- Resolves: RHEL-13367 - httpd:2.4/mod_http2: reset requests exhaust memory (incomplete fix of CVE-2023-44487)(CVE-2023-45802)
- Resolves: #2177748 - CVE-2023-25690 httpd:2.4/httpd: HTTP request splitting with mod_rewrite and mod_proxy
- Resolves: #2095650 - Dependency from mod_http2 on httpd broken
- Backport SNI feature refactor - Resolves: rhbz#2137257
- Resolves: #2035030 - CVE-2021-44224 httpd:2.4/httpd: possible NULL dereference or SSRF in forward proxy configurations