{"id":44557,"date":"2021-12-23T14:26:33","date_gmt":"2021-12-23T14:26:33","guid":{"rendered":"https:\/\/packetstormsecurity.com\/news\/view\/32943\/Apaches-New-Security-Update-For-HTTPD-Server-Fixes-Two-Flaws.html"},"modified":"2021-12-23T14:26:33","modified_gmt":"2021-12-23T14:26:33","slug":"apaches-new-security-update-for-httpd-server-fixes-two-flaws","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\/","title":{"rendered":"Apache&#8217;s New Security Update For HTTPD Server Fixes Two Flaws"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/www.zdnet.com\/a\/img\/resize\/ea7ac6295d660f6dc417b96565181b3806869928\/2021\/10\/11\/589e7a4f-7c19-4fbc-af72-6ea6007375c0\/engineer-it-worker-male-data-technology.jpg?width=770&amp;height=578&amp;fit=crop&amp;auto=webp\" class=\"ff-og-image-inserted\"><\/div>\n<p>The Apache Software Foundation has released an update to address a critical flaw in its hugely popular web server that allows remote attackers to take control of a vulnerable system.&nbsp;<\/p>\n<p>The foundation has released version 2.4.52 of the Apache HTTP Server (web server) that addresses two flaws tracked as <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2021-44790\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" data-component=\"externalLink\">CVE-2021-44790<\/a> and <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2021-44224\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" data-component=\"externalLink\">CVE-2021-44224<\/a>, which have respective CVSS severity scores of 9.8 (critical) and 8.2 (high) out of a possible 10. A score of 9.8 is very bad, and in recent weeks has only been topped by the Log4j vulnerability known as Log4Shell, which had a <a href=\"https:\/\/www.zdnet.com\/article\/log4j-zero-day-flaw-what-you-need-to-know-and-how-to-protect-yourself\/\" target=\"_blank\" rel=\"noopener\">severity score of 10 out of 10<\/a>. &nbsp; &nbsp;<\/p>\n<div class=\"relatedContent alignRight\">\n<h3 class=\"heading\"> <span class=\"int\">ZDNet Recommends<\/span> <\/h3>\n<\/p><\/div>\n<p>The first Apache web server flaw is a memory-related buffer overflow affecting Apache HTTP Server 2.4.51 and earlier. The Cybersecurity and Infrastructure Security Agency (CISA) <a href=\"https:\/\/www.cisa.gov\/uscert\/ncas\/current-activity\/2021\/12\/22\/apache-releases-security-update-http-server\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" data-component=\"externalLink\">warns<\/a> it &#8220;may allow a remote attacker to take control of an affected system&#8221;. The less serious flaw allows for server side request forgery in Apache HTTP Server 2.4.7 up to 2.4.51. &nbsp;<\/p>\n<p><strong>SEE: <\/strong><a href=\"http:\/\/www.zdnet.com\/topic\/a-winning-strategy-for-cybersecurity\/#link=%7B%22role%22:%22standard%22,%22href%22:%22http:\/\/www.zdnet.com\/topic\/a-winning-strategy-for-cybersecurity\/%22,%22target%22:%22_blank%22,%22absolute%22:%22%22,%22linkText%22:%22%3Cstrong%3EA%20winning%20strategy%20for%20cybersecurity%3C\/strong%3E%22%7D\"><strong>A winning strategy for cybersecurity<\/strong><\/a><strong> (ZDNet special report)<\/strong><\/p>\n<p>This release of Apache HTTP Server is the <a href=\"https:\/\/httpd.apache.org\/security\/vulnerabilities_24.html\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" data-component=\"externalLink\">latest generally available release<\/a> of the new generation 2.4.x branch of Apache HTTPD from Apache&#8217;s 26-year-old HTTP Server Project, which maintains an important and modern open-source HTTP server for Unix and Windows platforms.&nbsp;<\/p>\n<p>Apache HTTP Server is the second most widely used web server on the internet behind Nginx, <a href=\"https:\/\/w3techs.com\/technologies\/overview\/web_server\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" data-component=\"externalLink\">according to W3Techs<\/a>, which estimates it&#8217;s used by 31.4% of the world&#8217;s websites. UK security firm Netcraft estimates 283 million websites <a href=\"https:\/\/news.netcraft.com\/archives\/category\/web-server-survey\/\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" data-component=\"externalLink\">used Apache HTTP Server in December 2021<\/a>, representing 24% of all web servers.&nbsp;<\/p>\n<p>The critical bug is apparently not under attack yet but the HTTPD team believes it has the potential to be weaponized. &nbsp;<\/p>\n<section class=\"sharethrough-top placeholder\"> <\/section>\n<p>&#8220;The Apache httpd team is not aware of an exploit for the vulnerability though it might be possible to craft one,&#8221; the Apache HTTPD team said.<\/p>\n<p>&#8220;A carefully crafted request body can cause a buffer overflow in the mod_lua multipart parser (r:parsebody() called from Lua scripts),&#8221; <a href=\"https:\/\/seclists.org\/oss-sec\/2021\/q4\/172\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" data-component=\"externalLink\">Apache Foundation&#8217;s Steffan Eissing explained on a mailing list<\/a> .<\/p>\n<p>As Netcraft notes, Apache HTTP Server wasn&#8217;t directly impacted by the Java-based Log4j error messaging library as it was written in C. However, even web servers written in non-Java languages may still have integrated the vulnerable Log4j library in a technology stack. IBM&#8217;s web server, WebSphere, integrates Log4j and was vulnerable, but Netcraft found only 3,778 sites using it.&nbsp;<\/p>\n<p>The Apache Software Foundation has released three updates in the past week in the wake of the widespread Log4Shell vulnerability in Log4j version 2 branch.&nbsp;<\/p>\n<p>Cybersecurity agencies from the US, Australia, Canada, New Zealand and the United Kingdom <a href=\"https:\/\/www.zdnet.com\/article\/cisa-cybersecurity-centers-from-australia-nz-uk-and-canada-release-log4j-advisory\/\">yesterday released guidance for organizations to address the bug<\/a>. The bug is expected to take months to resolve because the Log4j library has been integrated as a <a href=\"https:\/\/www.zdnet.com\/article\/log4j-zero-day-flaw-what-you-need-to-know-and-how-to-protect-yourself\/\">component into hundreds of software products from major vendors<\/a>, including IBM, Cisco, VMware, RedHat and Oracle. The library also ships with important frameworks, such as Apache&#8217;s Struts2. &nbsp;<\/p>\n<p> READ MORE <a href=\"https:\/\/packetstormsecurity.com\/news\/view\/32943\/Apaches-New-Security-Update-For-HTTPD-Server-Fixes-Two-Flaws.html\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[60],"tags":[9789],"class_list":["post-44557","post","type-post","status-publish","format-standard","hentry","category-packet-storm","tag-headlineflawpatchapache"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.6 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Apache&#039;s New Security Update For HTTPD Server Fixes Two Flaws 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Apache&#039;s New Security Update For HTTPD Server Fixes Two Flaws 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2021-12-23T14:26:33+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.zdnet.com\/a\/img\/resize\/ea7ac6295d660f6dc417b96565181b3806869928\/2021\/10\/11\/589e7a4f-7c19-4fbc-af72-6ea6007375c0\/engineer-it-worker-male-data-technology.jpg?width=770&amp;height=578&amp;fit=crop&amp;auto=webp\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Apache&#8217;s New Security Update For HTTPD Server Fixes Two Flaws\",\"datePublished\":\"2021-12-23T14:26:33+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\\\/\"},\"wordCount\":515,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.zdnet.com\\\/a\\\/img\\\/resize\\\/ea7ac6295d660f6dc417b96565181b3806869928\\\/2021\\\/10\\\/11\\\/589e7a4f-7c19-4fbc-af72-6ea6007375c0\\\/engineer-it-worker-male-data-technology.jpg?width=770&amp;height=578&amp;fit=crop&amp;auto=webp\",\"keywords\":[\"headline,flaw,patch,apache\"],\"articleSection\":[\"Packet Storm\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\\\/\",\"name\":\"Apache's New Security Update For HTTPD Server Fixes Two Flaws 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.zdnet.com\\\/a\\\/img\\\/resize\\\/ea7ac6295d660f6dc417b96565181b3806869928\\\/2021\\\/10\\\/11\\\/589e7a4f-7c19-4fbc-af72-6ea6007375c0\\\/engineer-it-worker-male-data-technology.jpg?width=770&amp;height=578&amp;fit=crop&amp;auto=webp\",\"datePublished\":\"2021-12-23T14:26:33+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.zdnet.com\\\/a\\\/img\\\/resize\\\/ea7ac6295d660f6dc417b96565181b3806869928\\\/2021\\\/10\\\/11\\\/589e7a4f-7c19-4fbc-af72-6ea6007375c0\\\/engineer-it-worker-male-data-technology.jpg?width=770&amp;height=578&amp;fit=crop&amp;auto=webp\",\"contentUrl\":\"https:\\\/\\\/www.zdnet.com\\\/a\\\/img\\\/resize\\\/ea7ac6295d660f6dc417b96565181b3806869928\\\/2021\\\/10\\\/11\\\/589e7a4f-7c19-4fbc-af72-6ea6007375c0\\\/engineer-it-worker-male-data-technology.jpg?width=770&amp;height=578&amp;fit=crop&amp;auto=webp\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"headline,flaw,patch,apache\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/headlineflawpatchapache\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Apache&#8217;s New Security Update For HTTPD Server Fixes Two Flaws\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Apache's New Security Update For HTTPD Server Fixes Two Flaws 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\/","og_locale":"en_US","og_type":"article","og_title":"Apache's New Security Update For HTTPD Server Fixes Two Flaws 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2021-12-23T14:26:33+00:00","og_image":[{"url":"https:\/\/www.zdnet.com\/a\/img\/resize\/ea7ac6295d660f6dc417b96565181b3806869928\/2021\/10\/11\/589e7a4f-7c19-4fbc-af72-6ea6007375c0\/engineer-it-worker-male-data-technology.jpg?width=770&amp;height=578&amp;fit=crop&amp;auto=webp","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Apache&#8217;s New Security Update For HTTPD Server Fixes Two Flaws","datePublished":"2021-12-23T14:26:33+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\/"},"wordCount":515,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\/#primaryimage"},"thumbnailUrl":"https:\/\/www.zdnet.com\/a\/img\/resize\/ea7ac6295d660f6dc417b96565181b3806869928\/2021\/10\/11\/589e7a4f-7c19-4fbc-af72-6ea6007375c0\/engineer-it-worker-male-data-technology.jpg?width=770&amp;height=578&amp;fit=crop&amp;auto=webp","keywords":["headline,flaw,patch,apache"],"articleSection":["Packet Storm"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\/","url":"https:\/\/www.threatshub.org\/blog\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\/","name":"Apache's New Security Update For HTTPD Server Fixes Two Flaws 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\/#primaryimage"},"thumbnailUrl":"https:\/\/www.zdnet.com\/a\/img\/resize\/ea7ac6295d660f6dc417b96565181b3806869928\/2021\/10\/11\/589e7a4f-7c19-4fbc-af72-6ea6007375c0\/engineer-it-worker-male-data-technology.jpg?width=770&amp;height=578&amp;fit=crop&amp;auto=webp","datePublished":"2021-12-23T14:26:33+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\/#primaryimage","url":"https:\/\/www.zdnet.com\/a\/img\/resize\/ea7ac6295d660f6dc417b96565181b3806869928\/2021\/10\/11\/589e7a4f-7c19-4fbc-af72-6ea6007375c0\/engineer-it-worker-male-data-technology.jpg?width=770&amp;height=578&amp;fit=crop&amp;auto=webp","contentUrl":"https:\/\/www.zdnet.com\/a\/img\/resize\/ea7ac6295d660f6dc417b96565181b3806869928\/2021\/10\/11\/589e7a4f-7c19-4fbc-af72-6ea6007375c0\/engineer-it-worker-male-data-technology.jpg?width=770&amp;height=578&amp;fit=crop&amp;auto=webp"},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/apaches-new-security-update-for-httpd-server-fixes-two-flaws\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"headline,flaw,patch,apache","item":"https:\/\/www.threatshub.org\/blog\/tag\/headlineflawpatchapache\/"},{"@type":"ListItem","position":3,"name":"Apache&#8217;s New Security Update For HTTPD Server Fixes Two Flaws"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/44557","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=44557"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/44557\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=44557"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=44557"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=44557"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}