0
because Tomcat Connector mod_jk 1.2.4 is Vulnerable (CVE-2018-11759) i am forced to upgrade the Connector. The Vendor has advised to upgrade to version 1.2.46 or later (http://tomcat.apache.org/download-connectors.cgi).
I use an Apache 2.4.20 Webserver (HTTP) on a Linux - Redhat OS.
So when i download and unzip Tomcat Connectors (mod_jk) 1.2.46 i can´t find any module for the Connector (mod_jk.so) to replace with the old one in the appache modules directory. Am I doing something wrong?
Best Regards
Dir you read this?
– xenoid – 2019-03-01T10:41:01.097Yes i do. In this Thread i need also the mod_jk.so.... – aykon – 2019-03-01T10:59:07.617
1
Did you read the section "Building mod_jk on Unix"? You can also look at this
– xenoid – 2019-03-01T17:52:36.550Btw, If you initial mod_jk install was from your distro repository, you can try to upgrade the package from the same repo, they normally fix vulnerabilities. – xenoid – 2019-03-01T18:01:28.913
@xenoid you are our rescue. Thank you so much – aykon – 2019-03-21T10:36:22.340