Red Hat Security Advisory: mod_md security update
A moderate severity vulnerability (CVE-2026-29168) affects the mod_md module in Red Hat Enterprise Linux 9. The mod_md module automates certificate provisioning using the ACME protocol for virtual hosts. The vulnerability involves an unrestricted OCSP response that can lead to resource exhaustion. Red Hat has released an update to address this issue in mod_md version 2.4.26-2.el9_8.1 for multiple architectures and variants of Red Hat Enterprise Linux 9.
AI Analysis
Technical Summary
The mod_md module in Red Hat Enterprise Linux 9, which manages domain properties and automates certificate provisioning via the ACME protocol, contains a vulnerability identified as CVE-2026-29168. This vulnerability arises from unrestricted OCSP responses that can cause resource exhaustion, potentially impacting system stability or availability. Red Hat has issued a security advisory (RHSA-2026:30844) and released updated packages (mod_md-2.4.26-2.el9_8.1) to fix this issue across various supported architectures and update streams.
Potential Impact
The vulnerability can lead to resource exhaustion on systems running the affected mod_md module, which may degrade performance or cause denial of service conditions. The impact is rated as moderate by Red Hat Product Security. There are no known exploits in the wild at this time.
Mitigation Recommendations
Red Hat has provided an official security update that fixes this vulnerability. Users should apply the mod_md update version 2.4.26-2.el9_8.1 or later available for Red Hat Enterprise Linux 9 and its variants. Detailed update instructions are available in the Red Hat advisory RHSA-2026:30844 and the referenced article https://access.redhat.com/articles/11258. Applying this update mitigates the vulnerability.
Red Hat Security Advisory: mod_md security update
Description
A moderate severity vulnerability (CVE-2026-29168) affects the mod_md module in Red Hat Enterprise Linux 9. The mod_md module automates certificate provisioning using the ACME protocol for virtual hosts. The vulnerability involves an unrestricted OCSP response that can lead to resource exhaustion. Red Hat has released an update to address this issue in mod_md version 2.4.26-2.el9_8.1 for multiple architectures and variants of Red Hat Enterprise Linux 9.
Affected software
Run on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The mod_md module in Red Hat Enterprise Linux 9, which manages domain properties and automates certificate provisioning via the ACME protocol, contains a vulnerability identified as CVE-2026-29168. This vulnerability arises from unrestricted OCSP responses that can cause resource exhaustion, potentially impacting system stability or availability. Red Hat has issued a security advisory (RHSA-2026:30844) and released updated packages (mod_md-2.4.26-2.el9_8.1) to fix this issue across various supported architectures and update streams.
Potential Impact
The vulnerability can lead to resource exhaustion on systems running the affected mod_md module, which may degrade performance or cause denial of service conditions. The impact is rated as moderate by Red Hat Product Security. There are no known exploits in the wild at this time.
Mitigation Recommendations
Red Hat has provided an official security update that fixes this vulnerability. Users should apply the mod_md update version 2.4.26-2.el9_8.1 or later available for Red Hat Enterprise Linux 9 and its variants. Detailed update instructions are available in the Red Hat advisory RHSA-2026:30844 and the referenced article https://access.redhat.com/articles/11258. Applying this update mitigates the vulnerability.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:30844
- Cve Count
- 1
- Additional Cves
- []
- Cvss Version
- null
Threat ID: 6a42ed6527e9c79719937dc4
Added to database: 06/29/2026, 22:10:45 UTC
Last enriched: 06/29/2026, 22:34:18 UTC
Last updated: 06/30/2026, 01:11:27 UTC
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.