Question

CentOS httpd installation is vulnerable to ARME exploit, will not update to latest, how would I change my install to the latest Apache?

Posted January 6, 2014 2.3k views
It came to my attention lately that my HTTPD installation on a CentOS droplet is vulnerable to the old ARME exploit (Apache remote memory exhaustion) and running `yum update` does not update to the firmware due to a release choice. How would I go about moving my httpd installation (complete with SSL) to a newer Apache version that is not vulnerable to this exploit?
Add a comment
rich159139
By:
rich159139
Add a comment

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
2 answers
kamaln7 January 6, 2014
I'm not that familiar with CentOS but you could try updating the to latest CentOS version and see if that upgrades Apache along with it
Reply Report
mattbridges January 9, 2014
Or download the apache (and php) source and compile the latest version?
Reply Report
Submit an Answer

Looking for something else?

Ask a new question Search for more help