Advisory: CLSA-2025:1757014900
OS: Ubuntu 18.04 ELS
Public date: 2025-09-04 19:41:42.278607
Project: apache2
Version: 2.4.29-1ubuntu4.27+tuxcare.els8
Errata link: https://errata.tuxcare.com/els_os/ubuntu18.04els/CLSA-2025-1757014900.html
* SECURITY UPDATE: mod_ssl TLS upgrade attack - debian/patches/CVE-2025-49812.patch: remove antiquated 'SSLEngine optional' TLS upgrade in modules/ssl/ssl_engine_config.c, modules/ssl/ssl_engine_init.c, modules/ssl/ssl_engine_kernel.c, modules/ssl/ssl_private.h. - CVE-2025-49812
Update command: apt-get update apt-get --only-upgrade install apache2*
apache2_2.4.29-1ubuntu4.27+tuxcare.els8_amd64.deb apache2-bin_2.4.29-1ubuntu4.27+tuxcare.els8_amd64.deb apache2-data_2.4.29-1ubuntu4.27+tuxcare.els8_all.deb apache2-dev_2.4.29-1ubuntu4.27+tuxcare.els8_amd64.deb apache2-doc_2.4.29-1ubuntu4.27+tuxcare.els8_all.deb apache2-ssl-dev_2.4.29-1ubuntu4.27+tuxcare.els8_amd64.deb apache2-suexec-custom_2.4.29-1ubuntu4.27+tuxcare.els8_amd64.deb apache2-suexec-pristine_2.4.29-1ubuntu4.27+tuxcare.els8_amd64.deb apache2-utils_2.4.29-1ubuntu4.27+tuxcare.els8_amd64.deb