1. 내용
mod_proxy: "unix:" 다음을 포함하는 제작된 요청 uri-path를 통한 SSRF (CVE-2021-40438)
2. 업데이트 방법
yum install httpd
3. 관련 패키지
httpd-2.4.6-97.el7_9.1.x86_64.rpm
httpd-debuginfo-2.4.6-97.el7_9.1.x86_64.rpm
httpd-debuginfo-2.4.6-97.el7_9.1.x86_64.rpm
httpd-devel-2.4.6-97.el7_9.1.x86_64.rpm
httpd-manual-2.4.6-97.el7_9.1.noarch.rpm
httpd-tools-2.4.6-97.el7_9.1.x86_64.rpm
mod_ldap-2.4.6-97.el7_9.1.x86_64.rpm
mod_proxy_html-2.4.6-97.el7_9.1.x86_64.rpm
mod_session-2.4.6-97.el7_9.1.x86_64.rpm
mod_ssl-2.4.6-97.el7_9.1.x86_64.rpm
4. CVE-ID
CVE-2021-40438
5. 참고
https://access.redhat.com/errata/RHSA-2021:3856