| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: httpd-devel | Distribution: CentOS |
| Version: 2.4.62 | Vendor: CentOS |
| Release: 14.el9 | Build date: Mon Jun 1 15:25:59 2026 |
| Group: Unspecified | Build host: ppc64le-01.stream.rdu2.redhat.com |
| Size: 933966 | Source RPM: httpd-2.4.62-14.el9.src.rpm |
| Packager: builder@centos.org | |
| Url: https://httpd.apache.org/ | |
| Summary: Development interfaces for the Apache HTTP Server | |
The httpd-devel package contains the APXS binary and other files that you need to build Dynamic Shared Objects (DSOs) for the Apache HTTP Server. If you are installing the Apache HTTP Server and you want to be able to compile or develop additional modules for Apache, you need to install this package.
ASL 2.0
* Fri May 29 2026 Luboš Uhliarik <luhliari@redhat.com> - 2.4.62-14
- Resolves: RHEL-173563 - httpd: Apache HTTP Server mod_proxy_ajp: Arbitrary
code execution via heap-based buffer overflow (CVE-2026-28780)
- Resolves: RHEL-175078 - httpd: NULL pointer dereference can cause a child
process crash (CVE-2026-33007)
- Resolves: RHEL-175099 - httpd: off-by-one out-of-bounds reads in AJP getter
functions (CVE-2026-33857)
- Resolves: RHEL-175035 - httpd: heap-based buffer over-read due to missing
null-termination check (CVE-2026-34032)
- Resolves: RHEL-175063 - httpd: heap-based buffer over-read and memory
disclosure in ajp_parse_data() (CVE-2026-34059)
* Thu Feb 12 2026 Luboš Uhliarik <luhliari@redhat.com> - 2.4.62-13
- Resolves: RHEL-129692 - [RFE] Need miliseconds time stamp in ErrorLogFormat
* Thu Jan 08 2026 Luboš Uhliarik <luhliari@redhat.com> - 2.4.62-12
- Resolves: RHEL-135064 - httpd: Apache HTTP Server: mod_userdir+suexec bypass
via AllowOverride FileInfo (CVE-2025-66200)
- Resolves: RHEL-135049 - httpd: Apache HTTP Server: CGI environment variable
override (CVE-2025-65082)
- Resolves: RHEL-134481 - httpd: Apache HTTP Server: Server Side Includes adds
query string to #exec cmd=... (CVE-2025-58098)
* Fri Dec 19 2025 Luboš Uhliarik <luhliari@redhat.com> - 2.4.62-11
- Resolves: RHEL-131827 - Fix error page messaging when error handling fails
* Thu Nov 06 2025 Luboš Uhliarik <luhliari@redhat.com> - 2.4.62-10
- Resolves: RHEL-119000 - mod_ssl: allow more fine grained SSL SNI vhost check
to avoid unnecessary 421 errors after CVE-2025-23048 fix
- mod_ssl: add conf.d/snipolicy.conf to set 'SSLVHostSNIPolicy authonly' default
* Fri Oct 24 2025 Luboš Uhliarik <luhliari@redhat.com> - 2.4.62-9
- Resolves: RHEL-105446 - mod_proxy_hcheck may stop healthchecks after a child
process is reclaimed
* Mon Oct 13 2025 Luboš Uhliarik <luhliari@redhat.com> - 2.4.62-8
- Resolves: RHEL-114501 Image mode: The dir /var/www is not created when
updating system in image mode
* Sat Aug 16 2025 Luboš Uhliarik <luhliari@redhat.com> - 2.4.62-7
- Resolves: RHEL-99815 - stickysession field does not work when specifying
it in the query parameter after upgrade to 9.5
- Resolves: RHEL-99953 - httpd: HTTP Session Hijack via a TLS
upgrade (CVE-2025-49812)
- Resolves: RHEL-99968 - httpd: access control bypass by trusted
clients is possible using TLS 1.3 session resumption (CVE-2025-23048)
- Resolves: RHEL-99977 - httpd: insufficient escaping of user-supplied
data in mod_ssl (CVE-2024-47252)
* Tue Jul 29 2025 Luboš Uhliarik <luhliari@redhat.com> - 2.4.62-6
- Resolves: RHEL-94562 - httpd 2.4.62: mod_proxy_connect prematurely closes
connections
* Fri Jun 06 2025 Joe Orton <jorton@redhat.com> - 2.4.62-5
- mod_dav: add dav_get_base_path() API
- Resolves: RHEL-41069
* Wed Jan 29 2025 Luboš Uhliarik <luhliari@redhat.com> - 2.4.62-4
- Resolves: RHEL-66488 - Apache HTTPD no longer parse PHP files with unicode
characters in the name
* Thu Jan 09 2025 Luboš Uhliarik <luhliari@redhat.com> - 2.4.62-3
- Resolves: RHEL-68660 - RewriteRule proxying to UDS (unix domain socket)
configured in .htaccess doesn't work on httpd-2.4.62-1
* Thu Sep 12 2024 Joe Orton <jorton@redhat.com> - 2.4.62-2
- mod_ssl: fix loading keys via ENGINE API
Resolves: RHEL-36755
* Sat Aug 03 2024 Luboš Uhliarik <luhliari@redhat.com> - 2.4.62-1
- new version 2.4.62
- Resolves: RHEL-52724 - Regression introduced by CVE-2024-38474 fix
* Fri Jul 19 2024 Luboš Uhliarik <luhliari@redhat.com> - 2.4.59-7
- Resolves: RHEL-49856: htcacheclean.service missing [Install] section
* Thu May 30 2024 Joe Orton <jorton@redhat.com> - 2.4.59-6
- mod_ssl: restore SSL_OP_NO_RENEGOTIATE support
Related: RHEL-14668
/usr/bin/apxs /usr/include/httpd /usr/include/httpd/.mmn /usr/include/httpd/ap_compat.h /usr/include/httpd/ap_config.h /usr/include/httpd/ap_config_auto.h /usr/include/httpd/ap_config_layout.h /usr/include/httpd/ap_expr.h /usr/include/httpd/ap_hooks.h /usr/include/httpd/ap_listen.h /usr/include/httpd/ap_mmn.h /usr/include/httpd/ap_mpm.h /usr/include/httpd/ap_provider.h /usr/include/httpd/ap_regex.h /usr/include/httpd/ap_regkey.h /usr/include/httpd/ap_release.h /usr/include/httpd/ap_slotmem.h /usr/include/httpd/ap_socache.h /usr/include/httpd/apache_noprobes.h /usr/include/httpd/cache_common.h /usr/include/httpd/heartbeat.h /usr/include/httpd/http_config.h /usr/include/httpd/http_connection.h /usr/include/httpd/http_core.h /usr/include/httpd/http_log.h /usr/include/httpd/http_main.h /usr/include/httpd/http_protocol.h /usr/include/httpd/http_request.h /usr/include/httpd/http_ssl.h /usr/include/httpd/http_vhost.h /usr/include/httpd/httpd.h /usr/include/httpd/mod_auth.h /usr/include/httpd/mod_cache.h /usr/include/httpd/mod_cgi.h /usr/include/httpd/mod_core.h /usr/include/httpd/mod_dav.h /usr/include/httpd/mod_dbd.h /usr/include/httpd/mod_http2.h /usr/include/httpd/mod_include.h /usr/include/httpd/mod_log_config.h /usr/include/httpd/mod_proxy.h /usr/include/httpd/mod_request.h /usr/include/httpd/mod_rewrite.h /usr/include/httpd/mod_session.h /usr/include/httpd/mod_so.h /usr/include/httpd/mod_ssl.h /usr/include/httpd/mod_ssl_openssl.h /usr/include/httpd/mod_status.h /usr/include/httpd/mod_unixd.h /usr/include/httpd/mod_watchdog.h /usr/include/httpd/mod_xml2enc.h /usr/include/httpd/mpm_common.h /usr/include/httpd/os.h /usr/include/httpd/scoreboard.h /usr/include/httpd/unixd.h /usr/include/httpd/util_cfgtree.h /usr/include/httpd/util_charset.h /usr/include/httpd/util_cookies.h /usr/include/httpd/util_ebcdic.h /usr/include/httpd/util_fcgi.h /usr/include/httpd/util_filter.h /usr/include/httpd/util_ldap.h /usr/include/httpd/util_md5.h /usr/include/httpd/util_mutex.h /usr/include/httpd/util_script.h /usr/include/httpd/util_time.h /usr/include/httpd/util_varbuf.h /usr/include/httpd/util_xml.h /usr/lib/rpm/macros.d/macros.httpd /usr/lib64/httpd/build /usr/lib64/httpd/build/config_vars.mk /usr/lib64/httpd/build/instdso.sh /usr/lib64/httpd/build/library.mk /usr/lib64/httpd/build/ltlib.mk /usr/lib64/httpd/build/mkdir.sh /usr/lib64/httpd/build/program.mk /usr/lib64/httpd/build/rules.mk /usr/lib64/httpd/build/special.mk /usr/lib64/httpd/build/vendor-apxs /usr/lib64/httpd/build/vendor_config_vars.mk /usr/share/man/man1/apxs.1.gz
Generated by rpm2html 1.8.1
Fabrice Bellet, Tue Jun 23 03:59:13 2026