{"id":"USN-8516-1","summary":"apache2 vulnerabilities","details":"It was discovered that Apache HTTP Server's mod_ldap module incorrectly\nhandled memory when processing per-directory configurations. An attacker\ncould use this issue to cause the server to crash, resulting in a denial of\nservice, or possibly execute arbitrary code. (CVE-2026-29167)\n\nIt was discovered that Apache HTTP Server's mod_proxy_ftp module\nincorrectly handled HTML generation for FTP directory listings. A remote\nattacker could possibly use this issue to inject arbitrary web script or\nHTML. (CVE-2026-29170)\n\nIt was discovered that Apache HTTP Server's mod_proxy_html module\nincorrectly handled certain content from an untrusted backend. A remote\nattacker could possibly use this issue to cause Apache HTTP Server to\ncrash, resulting in a denial of service. (CVE-2026-34355)\n\nIt was discovered that Apache HTTP Server incorrectly handled\nProxyPassReverseCookie directives with a malicious backend server. A remote\nattacker could possibly use this issue to cause Apache HTTP Server to\ncrash, resulting in a denial of service. (CVE-2026-34356)\n\nIt was discovered that Apache HTTP Server's mod_dav_fs module incorrectly\nhandled certain path operations. An authenticated user could possibly use\nthis issue to manipulate trusted WebDAV property databases or cause a\ndenial of service. (CVE-2026-42535)\n\nIt was discovered that Apache HTTP Server's mod_xml2enc module incorrectly\nhandled certain content from an untrusted backend. A remote attacker could\npossibly use this issue to cause Apache HTTP Server to crash, resulting in\na denial of service. (CVE-2026-42536)\n\nIt was discovered that Apache HTTP Server incorrectly handled response\nheaders when multiple content languages were configured. A remote attacker\ncould possibly use this issue to obtain sensitive information.\n(CVE-2026-43951)\n\nIt was discovered that Apache HTTP Server incorrectly restricted certain\nfile functions in expressions within .htaccess files. A local attacker with\n.htaccess write access could possibly use this issue to obtain sensitive\ninformation. (CVE-2026-44119)\n\nIt was discovered that Apache HTTP Server's mod_ssl module incorrectly\nhandled OCSP responses from an attacker-controlled server. A remote\nattacker could possibly use this issue to obtain sensitive information or\ncause a denial of service. (CVE-2026-44185)\n\nIt was discovered that Apache HTTP Server's mod_proxy_ftp module\nincorrectly handled responses from an attacker-controlled backend FTP\nserver. A remote attacker could possibly use this issue to cause Apache\nHTTP Server to stop responding, resulting in a denial of service.\n(CVE-2026-44186)\n\nIt was discovered that Apache HTTP Server incorrectly handled crafted\nregular expressions in the server configuration. An attacker could possibly\nuse this issue to execute arbitrary code or cause a denial of service.\n(CVE-2026-44631)\n\nIt was discovered that Apache HTTP Server's mod_http2 module had a\nuse-after-free vulnerability when file handles were exhausted. A remote\nattacker could possibly use this issue to cause Apache HTTP Server to\ncrash, resulting in a denial of service. (CVE-2026-48913)","modified":"2026-07-08T22:49:38.324399826Z","published":"2026-07-08T13:49:49Z","related":["UBUNTU-CVE-2026-29167","UBUNTU-CVE-2026-29170","UBUNTU-CVE-2026-34355","UBUNTU-CVE-2026-34356","UBUNTU-CVE-2026-42535","UBUNTU-CVE-2026-42536","UBUNTU-CVE-2026-43951","UBUNTU-CVE-2026-44119","UBUNTU-CVE-2026-44185","UBUNTU-CVE-2026-44186","UBUNTU-CVE-2026-44631","UBUNTU-CVE-2026-48913"],"upstream":["CVE-2026-29167","CVE-2026-29170","CVE-2026-34355","CVE-2026-34356","CVE-2026-42535","CVE-2026-42536","CVE-2026-43951","CVE-2026-44119","CVE-2026-44185","CVE-2026-44186","CVE-2026-44631","CVE-2026-48913","UBUNTU-CVE-2026-29167","UBUNTU-CVE-2026-29170","UBUNTU-CVE-2026-34355","UBUNTU-CVE-2026-34356","UBUNTU-CVE-2026-42535","UBUNTU-CVE-2026-42536","UBUNTU-CVE-2026-43951","UBUNTU-CVE-2026-44119","UBUNTU-CVE-2026-44185","UBUNTU-CVE-2026-44186","UBUNTU-CVE-2026-44631","UBUNTU-CVE-2026-48913"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-8516-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-29167"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-29170"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-34355"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-34356"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-42535"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-42536"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-43951"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-44119"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-44185"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-44186"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-44631"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-48913"}],"affected":[{"package":{"name":"apache2","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/apache2?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.4.52-1ubuntu4.23"}]}],"versions":["2.4.48-3.1ubuntu3","2.4.48-3.1ubuntu4","2.4.51-2ubuntu1","2.4.52-1ubuntu1","2.4.52-1ubuntu2","2.4.52-1ubuntu4","2.4.52-1ubuntu4.1","2.4.52-1ubuntu4.2","2.4.52-1ubuntu4.3","2.4.52-1ubuntu4.4","2.4.52-1ubuntu4.5","2.4.52-1ubuntu4.6","2.4.52-1ubuntu4.7","2.4.52-1ubuntu4.8","2.4.52-1ubuntu4.9","2.4.52-1ubuntu4.10","2.4.52-1ubuntu4.11","2.4.52-1ubuntu4.12","2.4.52-1ubuntu4.13","2.4.52-1ubuntu4.14","2.4.52-1ubuntu4.15","2.4.52-1ubuntu4.16","2.4.52-1ubuntu4.18","2.4.52-1ubuntu4.19","2.4.52-1ubuntu4.20","2.4.52-1ubuntu4.21"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"apache2","binary_version":"2.4.52-1ubuntu4.23"},{"binary_name":"apache2-bin","binary_version":"2.4.52-1ubuntu4.23"},{"binary_name":"apache2-data","binary_version":"2.4.52-1ubuntu4.23"},{"binary_name":"apache2-suexec-custom","binary_version":"2.4.52-1ubuntu4.23"},{"binary_name":"apache2-suexec-pristine","binary_version":"2.4.52-1ubuntu4.23"},{"binary_name":"apache2-utils","binary_version":"2.4.52-1ubuntu4.23"},{"binary_name":"libapache2-mod-md","binary_version":"2.4.52-1ubuntu4.23"},{"binary_name":"libapache2-mod-proxy-uwsgi","binary_version":"2.4.52-1ubuntu4.23"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8516-1.json","cves_map":{"ecosystem":"Ubuntu:22.04:LTS","cves":[{"id":"CVE-2026-29167","severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"id":"CVE-2026-29170","severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"id":"CVE-2026-34355","severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"score":"medium","type":"Ubuntu"}]},{"id":"CVE-2026-34356","severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"type":"Ubuntu","score":"medium"}]},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-42535"},{"id":"CVE-2026-42536","severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-43951"},{"severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","type":"CVSS_V3"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2026-44119"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-44185"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","type":"CVSS_V3"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2026-44186"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-44631"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","type":"CVSS_V3"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2026-48913"}]}}},{"package":{"name":"apache2","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/apache2?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.4.58-1ubuntu8.15"}]}],"versions":["2.4.57-2ubuntu2","2.4.57-2ubuntu3","2.4.58-1ubuntu1","2.4.58-1ubuntu2","2.4.58-1ubuntu6","2.4.58-1ubuntu7","2.4.58-1ubuntu8","2.4.58-1ubuntu8.1","2.4.58-1ubuntu8.2","2.4.58-1ubuntu8.3","2.4.58-1ubuntu8.4","2.4.58-1ubuntu8.5","2.4.58-1ubuntu8.6","2.4.58-1ubuntu8.7","2.4.58-1ubuntu8.8","2.4.58-1ubuntu8.10","2.4.58-1ubuntu8.11","2.4.58-1ubuntu8.12","2.4.58-1ubuntu8.13"],"ecosystem_specific":{"binaries":[{"binary_name":"apache2","binary_version":"2.4.58-1ubuntu8.15"},{"binary_name":"apache2-bin","binary_version":"2.4.58-1ubuntu8.15"},{"binary_name":"apache2-data","binary_version":"2.4.58-1ubuntu8.15"},{"binary_name":"apache2-suexec-custom","binary_version":"2.4.58-1ubuntu8.15"},{"binary_name":"apache2-suexec-pristine","binary_version":"2.4.58-1ubuntu8.15"},{"binary_name":"apache2-utils","binary_version":"2.4.58-1ubuntu8.15"},{"binary_name":"libapache2-mod-md","binary_version":"2.4.58-1ubuntu8.15"},{"binary_name":"libapache2-mod-proxy-uwsgi","binary_version":"2.4.58-1ubuntu8.15"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8516-1.json","cves_map":{"ecosystem":"Ubuntu:24.04:LTS","cves":[{"id":"CVE-2026-29167","severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"type":"Ubuntu","score":"medium"}]},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-29170"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2026-34355"},{"id":"CVE-2026-34356","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"score":"medium","type":"Ubuntu"}]},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-42535"},{"id":"CVE-2026-42536","severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"type":"Ubuntu","score":"medium"}]},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2026-43951"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-44119"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-44185"},{"id":"CVE-2026-44186","severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"id":"CVE-2026-44631","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"score":"medium","type":"Ubuntu"}]},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-48913"}]}}},{"package":{"name":"apache2","ecosystem":"Ubuntu:26.04:LTS","purl":"pkg:deb/ubuntu/apache2?arch=source&distro=resolute"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.4.66-2ubuntu2.4"}]}],"versions":["2.4.64-1ubuntu3","2.4.65-3ubuntu1","2.4.66-2ubuntu1","2.4.66-2ubuntu2","2.4.66-2ubuntu2.1","2.4.66-2ubuntu2.2"],"ecosystem_specific":{"binaries":[{"binary_name":"apache2","binary_version":"2.4.66-2ubuntu2.4"},{"binary_name":"apache2-bin","binary_version":"2.4.66-2ubuntu2.4"},{"binary_name":"apache2-data","binary_version":"2.4.66-2ubuntu2.4"},{"binary_name":"apache2-suexec-custom","binary_version":"2.4.66-2ubuntu2.4"},{"binary_name":"apache2-suexec-pristine","binary_version":"2.4.66-2ubuntu2.4"},{"binary_name":"apache2-utils","binary_version":"2.4.66-2ubuntu2.4"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8516-1.json","cves_map":{"ecosystem":"Ubuntu:26.04:LTS","cves":[{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2026-29167"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-29170"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-34355"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-34356"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-42535"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-42536"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-43951"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-44119"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","type":"CVSS_V3"},{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-44185"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-44186"},{"severity":[{"score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-44631"},{"id":"CVE-2026-48913","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"score":"medium","type":"Ubuntu"}]}]}}}],"schema_version":"1.7.5"}