{"id":"USN-4307-1","summary":"apache2 update","details":"As a security improvement, this update adds TLSv1.3 support to the Apache\nHTTP Server package in Ubuntu 18.04 LTS.\n\nTLSv1.3 is enabled by default, and in certain environments may cause\ncompatibility issues. The SSLProtocol directive may be used to disable\nTLSv1.3 in these problematic environments.\n","modified":"2026-04-22T10:05:29.665757Z","published":"2020-03-18T14:49:31Z","references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-4307-1"},{"type":"REPORT","url":"https://launchpad.net/bugs/1845263"}],"affected":[{"package":{"name":"apache2","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/apache2@2.4.29-1ubuntu4.13?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.4.29-1ubuntu4.13"}]}],"versions":["2.4.27-2ubuntu3","2.4.29-1ubuntu1","2.4.29-1ubuntu2","2.4.29-1ubuntu3","2.4.29-1ubuntu4","2.4.29-1ubuntu4.1","2.4.29-1ubuntu4.2","2.4.29-1ubuntu4.3","2.4.29-1ubuntu4.4","2.4.29-1ubuntu4.5","2.4.29-1ubuntu4.6","2.4.29-1ubuntu4.7","2.4.29-1ubuntu4.8","2.4.29-1ubuntu4.10","2.4.29-1ubuntu4.11","2.4.29-1ubuntu4.12"],"ecosystem_specific":{"binaries":[{"binary_name":"apache2","binary_version":"2.4.29-1ubuntu4.13"},{"binary_name":"apache2-bin","binary_version":"2.4.29-1ubuntu4.13"},{"binary_name":"apache2-data","binary_version":"2.4.29-1ubuntu4.13"},{"binary_name":"apache2-suexec-custom","binary_version":"2.4.29-1ubuntu4.13"},{"binary_name":"apache2-suexec-pristine","binary_version":"2.4.29-1ubuntu4.13"},{"binary_name":"apache2-utils","binary_version":"2.4.29-1ubuntu4.13"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4307-1.json","cves_map":{"cves":[],"ecosystem":"Ubuntu:18.04:LTS"}}}],"schema_version":"1.7.5"}