u/Deeb4905

Recently CVE-2026-23918 was discovered for Apache version 2.4.66. So I went and checked "httpd -v" on my RHEL9 system, it said "Apache/2.4.62", so I thought all good. But then I was told that it doesn't work that way with RedHat, that versions didn't really evolve that way and they didn't always match the "actual" version numbers? So two questions, how do versions work on RHEL then? And how can I know if I'm affected by the CVE or not? Thanks!

I have several java applications in my tomcat server, I usually just put the .war file into the tomcat folder and it is automatically deployed without issue. But there's this one app that won't work; the error message is "Exception fixing docBase for Context - Cannot create directory".

I've googled it but without success. The server.xml and context.xml files of the tomcat server seem okay, and there's no such files in my app. The file is not corrupted as I can extract it manually. The permissions are the same as other apps.

Any ideas? Thanks a lot!