Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Fedora 43: Critical Security Update for httpd CVE-2025-58098 Advisory

fedora
Calendar Grey December 11, 2025
Dist Fedora Esm H88
Apache HTTP Server update for Fedora 43 addresses important security issues with critical ramifications and serves best practices for upgrade.
version update security update

Summary

The Apache HTTP Server is a powerful, efficient, and extensible

web server.

Update Information:

version update security update

Topics%20covered

Topics Covered

security advisory fedora httpd important bypass query string

Change Log

* Tue Dec 9 2025 Lubo\u0161 Uhliarik - 2.4.66-1 - new version 2.4.66

References


[ 1 ] Bug #2419768 - httpd-2.4.66 is available https://bugzilla.redhat.com/show_bug.cgi?id=2419768 [ 2 ] Bug #2420206 - CVE-2025-58098 httpd: Apache HTTP Server: Server Side Includes adds query string to #exec cmd=... [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2420206 [ 3 ] Bug #2420207 - CVE-2025-58098 httpd: Apache HTTP Server: Server Side Includes adds query string to #exec cmd=... [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2420207 [ 4 ] Bug #2420208 - CVE-2025-66200 httpd: Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2420208 [ 5 ] Bug #2420209 - CVE-2025-66200 httpd: Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2420209 [ 6 ] Bug #2420214 - CVE-2025-65082 httpd: Apache HTTP Server: CGI environment variable override [fedora-42] htt...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-9621c19da8' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: httpd
Product: Fedora 43
Version: 2.4.66
Release: 1.fc43
URL: https://httpd.apache.org/
Summary: Apache HTTP Server

Topics%20covered

Topics Covered

security advisory fedora httpd important bypass query string

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here