httpd with mod_proxy_http2 hits random errors after updating for CVE-2024-38477 fix

Solution Verified - Updated -

Issue

  • We recently updated httpd to receive the CVE-2024-38477 fix. We have mod_proxy_http2 configured and now this seems to hit random 503 response with the following logged error:
[Wed Sep 11 12:35:25.133153 2024] [proxy:error] [pid 30682:tid 140183244572416] [client ::1:51798] AH00898: URI has no hostname: / returned by /foobar

Environment

  • Red Hat Enterprise Linux 8
    • Apache httpd 2.4.37-65.module+el8.10.0+22069+b47f5c72.1
      • mod_proxy_http2
  • JBoss Core Services (JBCS) 2.4.57 SP5

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content