Synopsis
Moderate: mod_http2 security update
Type/Severity
Security Advisory: Moderate
Red Hat Lightspeed patch analysis
Identify and remediate systems affected by this advisory.
View affected systems
Topic
An update for mod_http2 is now available for Red Hat Enterprise Linux 10.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Description
The mod_h2 Apache httpd module implements the HTTP2 protocol (h2+h2c) on top of libnghttp2 for httpd 2.4 servers.
Security Fix(es):
- httpd: Apache HTTP Server: HTTP/2 DoS by Memory Increase (CVE-2025-53020)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected Products
-
Red Hat Enterprise Linux for x86_64 10 x86_64
-
Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 x86_64
-
Red Hat Enterprise Linux for IBM z Systems 10 s390x
-
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2 s390x
-
Red Hat Enterprise Linux for Power, little endian 10 ppc64le
-
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 ppc64le
-
Red Hat Enterprise Linux for ARM 64 10 aarch64
-
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2 aarch64
-
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.2 aarch64
-
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.2 s390x
-
Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.2 ppc64le
-
Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.2 x86_64
-
Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 10.2 x86_64
-
Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 10.2 aarch64
-
Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 10.2 ppc64le
-
Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 10.2 s390x
Fixes
-
BZ - 2379343
- CVE-2025-53020 mod_http2: Apache HTTP Server: HTTP/2 DoS by Memory Increase
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux for x86_64 10
| SRPM |
|
mod_http2-2.0.29-4.el10_2.src.rpm
|
SHA-256: 893ac9b8d38737675a55a30bfbde6464fe51c5c22db65362100250a3707fac36 |
| x86_64 |
|
mod_http2-2.0.29-4.el10_2.x86_64.rpm
|
SHA-256: cb260523048a39d09191785e090dd82ace635404b1d4fc350a2e80e72c2f8887 |
|
mod_http2-debuginfo-2.0.29-4.el10_2.x86_64.rpm
|
SHA-256: 22ed925cda99e1c9ba6c29755c8726d5cec488da4ec21a6531d5ad23660df534 |
|
mod_http2-debugsource-2.0.29-4.el10_2.x86_64.rpm
|
SHA-256: 12387be138299147e816d1d50c012561e0c22b3159ab21d6c40d6772ca0387bc |
Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2
| SRPM |
|
mod_http2-2.0.29-4.el10_2.src.rpm
|
SHA-256: 893ac9b8d38737675a55a30bfbde6464fe51c5c22db65362100250a3707fac36 |
| x86_64 |
|
mod_http2-2.0.29-4.el10_2.x86_64.rpm
|
SHA-256: cb260523048a39d09191785e090dd82ace635404b1d4fc350a2e80e72c2f8887 |
|
mod_http2-debuginfo-2.0.29-4.el10_2.x86_64.rpm
|
SHA-256: 22ed925cda99e1c9ba6c29755c8726d5cec488da4ec21a6531d5ad23660df534 |
|
mod_http2-debugsource-2.0.29-4.el10_2.x86_64.rpm
|
SHA-256: 12387be138299147e816d1d50c012561e0c22b3159ab21d6c40d6772ca0387bc |
Red Hat Enterprise Linux for IBM z Systems 10
| SRPM |
|
mod_http2-2.0.29-4.el10_2.src.rpm
|
SHA-256: 893ac9b8d38737675a55a30bfbde6464fe51c5c22db65362100250a3707fac36 |
| s390x |
|
mod_http2-2.0.29-4.el10_2.s390x.rpm
|
SHA-256: 2936e19648325e4c485776cc4ec5f805517dd669a4af329f52770349b353836f |
|
mod_http2-debuginfo-2.0.29-4.el10_2.s390x.rpm
|
SHA-256: 094644e2acf7fa2fb12f8d6ac866a78e7483f63dd247e0b7266e1f313bd525de |
|
mod_http2-debugsource-2.0.29-4.el10_2.s390x.rpm
|
SHA-256: 40e889df2d29d1586b3edc791072e0ca00061b80a03908dedb4dfa2137b06074 |
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2
| SRPM |
|
mod_http2-2.0.29-4.el10_2.src.rpm
|
SHA-256: 893ac9b8d38737675a55a30bfbde6464fe51c5c22db65362100250a3707fac36 |
| s390x |
|
mod_http2-2.0.29-4.el10_2.s390x.rpm
|
SHA-256: 2936e19648325e4c485776cc4ec5f805517dd669a4af329f52770349b353836f |
|
mod_http2-debuginfo-2.0.29-4.el10_2.s390x.rpm
|
SHA-256: 094644e2acf7fa2fb12f8d6ac866a78e7483f63dd247e0b7266e1f313bd525de |
|
mod_http2-debugsource-2.0.29-4.el10_2.s390x.rpm
|
SHA-256: 40e889df2d29d1586b3edc791072e0ca00061b80a03908dedb4dfa2137b06074 |
Red Hat Enterprise Linux for Power, little endian 10
| SRPM |
|
mod_http2-2.0.29-4.el10_2.src.rpm
|
SHA-256: 893ac9b8d38737675a55a30bfbde6464fe51c5c22db65362100250a3707fac36 |
| ppc64le |
|
mod_http2-2.0.29-4.el10_2.ppc64le.rpm
|
SHA-256: fd5ac5e4a1b6d6c5215d93e76b97fc8d876dfb9f94db881ef4d6c7ec2e5e08cb |
|
mod_http2-debuginfo-2.0.29-4.el10_2.ppc64le.rpm
|
SHA-256: 8a49fc34445785f8cc71fc4e7b589a25cd5f26650daaf4e91a911e7f274322f8 |
|
mod_http2-debugsource-2.0.29-4.el10_2.ppc64le.rpm
|
SHA-256: f5952ee9948a4ce4cea16f70cd6d752b4f899fb87adc500165fa3335b1375a97 |
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2
| SRPM |
|
mod_http2-2.0.29-4.el10_2.src.rpm
|
SHA-256: 893ac9b8d38737675a55a30bfbde6464fe51c5c22db65362100250a3707fac36 |
| ppc64le |
|
mod_http2-2.0.29-4.el10_2.ppc64le.rpm
|
SHA-256: fd5ac5e4a1b6d6c5215d93e76b97fc8d876dfb9f94db881ef4d6c7ec2e5e08cb |
|
mod_http2-debuginfo-2.0.29-4.el10_2.ppc64le.rpm
|
SHA-256: 8a49fc34445785f8cc71fc4e7b589a25cd5f26650daaf4e91a911e7f274322f8 |
|
mod_http2-debugsource-2.0.29-4.el10_2.ppc64le.rpm
|
SHA-256: f5952ee9948a4ce4cea16f70cd6d752b4f899fb87adc500165fa3335b1375a97 |
Red Hat Enterprise Linux for ARM 64 10
| SRPM |
|
mod_http2-2.0.29-4.el10_2.src.rpm
|
SHA-256: 893ac9b8d38737675a55a30bfbde6464fe51c5c22db65362100250a3707fac36 |
| aarch64 |
|
mod_http2-2.0.29-4.el10_2.aarch64.rpm
|
SHA-256: be27d6e2eaceb38de7b92d8670456996a6c9d286eb769b8a18d1c1bd5177168b |
|
mod_http2-debuginfo-2.0.29-4.el10_2.aarch64.rpm
|
SHA-256: bc18090267a48b7b0c51866de3389e427877d17b7aacd518143167c40e62c41a |
|
mod_http2-debugsource-2.0.29-4.el10_2.aarch64.rpm
|
SHA-256: e868c089a8f39bb9040620f712f2e8c5fdb4b4314e43fc407c0e016f6bd77362 |
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2
| SRPM |
|
mod_http2-2.0.29-4.el10_2.src.rpm
|
SHA-256: 893ac9b8d38737675a55a30bfbde6464fe51c5c22db65362100250a3707fac36 |
| aarch64 |
|
mod_http2-2.0.29-4.el10_2.aarch64.rpm
|
SHA-256: be27d6e2eaceb38de7b92d8670456996a6c9d286eb769b8a18d1c1bd5177168b |
|
mod_http2-debuginfo-2.0.29-4.el10_2.aarch64.rpm
|
SHA-256: bc18090267a48b7b0c51866de3389e427877d17b7aacd518143167c40e62c41a |
|
mod_http2-debugsource-2.0.29-4.el10_2.aarch64.rpm
|
SHA-256: e868c089a8f39bb9040620f712f2e8c5fdb4b4314e43fc407c0e016f6bd77362 |
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.2
| SRPM |
|
mod_http2-2.0.29-4.el10_2.src.rpm
|
SHA-256: 893ac9b8d38737675a55a30bfbde6464fe51c5c22db65362100250a3707fac36 |
| aarch64 |
|
mod_http2-2.0.29-4.el10_2.aarch64.rpm
|
SHA-256: be27d6e2eaceb38de7b92d8670456996a6c9d286eb769b8a18d1c1bd5177168b |
|
mod_http2-debuginfo-2.0.29-4.el10_2.aarch64.rpm
|
SHA-256: bc18090267a48b7b0c51866de3389e427877d17b7aacd518143167c40e62c41a |
|
mod_http2-debugsource-2.0.29-4.el10_2.aarch64.rpm
|
SHA-256: e868c089a8f39bb9040620f712f2e8c5fdb4b4314e43fc407c0e016f6bd77362 |
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.2
| SRPM |
|
mod_http2-2.0.29-4.el10_2.src.rpm
|
SHA-256: 893ac9b8d38737675a55a30bfbde6464fe51c5c22db65362100250a3707fac36 |
| s390x |
|
mod_http2-2.0.29-4.el10_2.s390x.rpm
|
SHA-256: 2936e19648325e4c485776cc4ec5f805517dd669a4af329f52770349b353836f |
|
mod_http2-debuginfo-2.0.29-4.el10_2.s390x.rpm
|
SHA-256: 094644e2acf7fa2fb12f8d6ac866a78e7483f63dd247e0b7266e1f313bd525de |
|
mod_http2-debugsource-2.0.29-4.el10_2.s390x.rpm
|
SHA-256: 40e889df2d29d1586b3edc791072e0ca00061b80a03908dedb4dfa2137b06074 |
Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.2
| SRPM |
|
mod_http2-2.0.29-4.el10_2.src.rpm
|
SHA-256: 893ac9b8d38737675a55a30bfbde6464fe51c5c22db65362100250a3707fac36 |
| ppc64le |
|
mod_http2-2.0.29-4.el10_2.ppc64le.rpm
|
SHA-256: fd5ac5e4a1b6d6c5215d93e76b97fc8d876dfb9f94db881ef4d6c7ec2e5e08cb |
|
mod_http2-debuginfo-2.0.29-4.el10_2.ppc64le.rpm
|
SHA-256: 8a49fc34445785f8cc71fc4e7b589a25cd5f26650daaf4e91a911e7f274322f8 |
|
mod_http2-debugsource-2.0.29-4.el10_2.ppc64le.rpm
|
SHA-256: f5952ee9948a4ce4cea16f70cd6d752b4f899fb87adc500165fa3335b1375a97 |
Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.2
| SRPM |
|
mod_http2-2.0.29-4.el10_2.src.rpm
|
SHA-256: 893ac9b8d38737675a55a30bfbde6464fe51c5c22db65362100250a3707fac36 |
| x86_64 |
|
mod_http2-2.0.29-4.el10_2.x86_64.rpm
|
SHA-256: cb260523048a39d09191785e090dd82ace635404b1d4fc350a2e80e72c2f8887 |
|
mod_http2-debuginfo-2.0.29-4.el10_2.x86_64.rpm
|
SHA-256: 22ed925cda99e1c9ba6c29755c8726d5cec488da4ec21a6531d5ad23660df534 |
|
mod_http2-debugsource-2.0.29-4.el10_2.x86_64.rpm
|
SHA-256: 12387be138299147e816d1d50c012561e0c22b3159ab21d6c40d6772ca0387bc |
Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 10.2
| SRPM |
|
mod_http2-2.0.29-4.el10_2.src.rpm
|
SHA-256: 893ac9b8d38737675a55a30bfbde6464fe51c5c22db65362100250a3707fac36 |
| x86_64 |
|
mod_http2-2.0.29-4.el10_2.x86_64.rpm
|
SHA-256: cb260523048a39d09191785e090dd82ace635404b1d4fc350a2e80e72c2f8887 |
|
mod_http2-debuginfo-2.0.29-4.el10_2.x86_64.rpm
|
SHA-256: 22ed925cda99e1c9ba6c29755c8726d5cec488da4ec21a6531d5ad23660df534 |
|
mod_http2-debugsource-2.0.29-4.el10_2.x86_64.rpm
|
SHA-256: 12387be138299147e816d1d50c012561e0c22b3159ab21d6c40d6772ca0387bc |
Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 10.2
| SRPM |
|
mod_http2-2.0.29-4.el10_2.src.rpm
|
SHA-256: 893ac9b8d38737675a55a30bfbde6464fe51c5c22db65362100250a3707fac36 |
| aarch64 |
|
mod_http2-2.0.29-4.el10_2.aarch64.rpm
|
SHA-256: be27d6e2eaceb38de7b92d8670456996a6c9d286eb769b8a18d1c1bd5177168b |
|
mod_http2-debuginfo-2.0.29-4.el10_2.aarch64.rpm
|
SHA-256: bc18090267a48b7b0c51866de3389e427877d17b7aacd518143167c40e62c41a |
|
mod_http2-debugsource-2.0.29-4.el10_2.aarch64.rpm
|
SHA-256: e868c089a8f39bb9040620f712f2e8c5fdb4b4314e43fc407c0e016f6bd77362 |
Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 10.2
| SRPM |
|
mod_http2-2.0.29-4.el10_2.src.rpm
|
SHA-256: 893ac9b8d38737675a55a30bfbde6464fe51c5c22db65362100250a3707fac36 |
| ppc64le |
|
mod_http2-2.0.29-4.el10_2.ppc64le.rpm
|
SHA-256: fd5ac5e4a1b6d6c5215d93e76b97fc8d876dfb9f94db881ef4d6c7ec2e5e08cb |
|
mod_http2-debuginfo-2.0.29-4.el10_2.ppc64le.rpm
|
SHA-256: 8a49fc34445785f8cc71fc4e7b589a25cd5f26650daaf4e91a911e7f274322f8 |
|
mod_http2-debugsource-2.0.29-4.el10_2.ppc64le.rpm
|
SHA-256: f5952ee9948a4ce4cea16f70cd6d752b4f899fb87adc500165fa3335b1375a97 |
Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 10.2
| SRPM |
|
mod_http2-2.0.29-4.el10_2.src.rpm
|
SHA-256: 893ac9b8d38737675a55a30bfbde6464fe51c5c22db65362100250a3707fac36 |
| s390x |
|
mod_http2-2.0.29-4.el10_2.s390x.rpm
|
SHA-256: 2936e19648325e4c485776cc4ec5f805517dd669a4af329f52770349b353836f |
|
mod_http2-debuginfo-2.0.29-4.el10_2.s390x.rpm
|
SHA-256: 094644e2acf7fa2fb12f8d6ac866a78e7483f63dd247e0b7266e1f313bd525de |
|
mod_http2-debugsource-2.0.29-4.el10_2.s390x.rpm
|
SHA-256: 40e889df2d29d1586b3edc791072e0ca00061b80a03908dedb4dfa2137b06074 |
