Apache httpd 2.4.62-2 with brotli support, TLS 1.3, OpenSSL 3.0.14 with http2, mod_http2 2.0.29 and ALPN for Red Hat Enterprise Linux, CentOS 7/8/9, Alma Linux, Rocky Linux 8/9

Apache httpd 2.4.62-2 added to the repository.

Changes:

spec file updated to be close to match next EL10
mod_lua moved to the separate package (now it is required to avoid problems with current setup)
mod_lua requirement will be removed in 2.4.63, thus it will be available for deletion

4 thoughts on “Apache httpd 2.4.62-2 with brotli support, TLS 1.3, OpenSSL 3.0.14 with http2, mod_http2 2.0.29 and ALPN for Red Hat Enterprise Linux, CentOS 7/8/9, Alma Linux, Rocky Linux 8/9”

Abdullah Adnal says:

August 13, 2024 at 5:43 am

Hello dears,

We have issue with openssl-quic-libs version, when we make scan to the server, the scan tool shows that there is version 3.0.15, and we didn’t find this version or higher in your repository.

So, can please release that version or higher.

Best regards,

Abdullah Adnan

Reply
1. Alexander Gerasimov says:
  
  August 13, 2024 at 7:51 am
  
  Hello Abdullah,
  
  Please provide me with the message. There is no such version of original openssl or quctls. I think there’s may be a problem found that still has no solution yet.
  
  Reply
  1. Abdullah Adnal says:
    
    August 13, 2024 at 8:16 am
    
    Hello Alexander,
    
    Thanks for your response.
    
    This is the message appears when doing scan on the server:
    “The version of OpenSSL installed on the remote host is prior to 3.0.15. It is, therefore, affected by a vulnerability as referenced in the 3.0.15 advisory.”
    
    please note that we use httpd package from codeit, and the installed version of “openssl-quic-libs” is 3.0.14
    
    BR,
    
    Reply
    1. Alexander Gerasimov says:
      
      August 13, 2024 at 8:22 am
      
      Abdullah, please check openssl website and changelog:
      ### Changes between 3.0.14 and 3.0.15 [xx XXX xxxx]
      
      * none yet
      
      Reply