Threats Tagged 'cve-2026-28780'

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fix(es): * httpd: Apache HTTP Server: HTTP/2 DoS by Memory Increase (CVE-2025-53020) * httpd: mod_proxy_ajp: heap-based buffer over-read and memory disclosure in ajp_parse_data() (CVE-2026-34059) * httpd: mod_proxy_ajp: heap-based buffer over-read due to missing null-termination check (CVE-2026-34032) * httpd: mod_proxy_ajp: off-by-one out-of-bounds reads in AJP getter functions (CVE-2026-33857) * httpd: mod_authn_socache: NULL pointer dereference can cause a child process crash (CVE-2026-33007) * Apache HTTP Server: mod_proxy_ajp: Apache HTTP Server mod_proxy_ajp: Arbitrary code execution via heap-based buffer overflow (CVE-2026-28780) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Multiple security vulnerabilities have been identified in Apache HTTP Server versions prior to 2.4.67. These issues affect various modules including HTTP/2, mod_rewrite, mod_proxy_ajp, mod_md, mod_dav_lock, mod_auth_digest, and mod_authn_socache. Vulnerabilities include improper memory handling, privilege mismanagement, timing attacks, and HTTP response splitting, which could lead to denial of service, information disclosure, authentication bypass, or arbitrary code execution. Fixes are available in updated Apache HTTP Server packages, such as version 2.4.67 and corresponding vendor patches.

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fix(es): * httpd: mod_proxy_ajp: heap-based buffer over-read and memory disclosure in ajp_parse_data() (CVE-2026-34059) * httpd: mod_proxy_ajp: heap-based buffer over-read due to missing null-termination check (CVE-2026-34032) * httpd: mod_proxy_ajp: off-by-one out-of-bounds reads in AJP getter functions (CVE-2026-33857) * httpd: mod_authn_socache: NULL pointer dereference can cause a child process crash (CVE-2026-33007) * Apache HTTP Server: mod_proxy_ajp: Apache HTTP Server mod_proxy_ajp: Arbitrary code execution via heap-based buffer overflow (CVE-2026-28780) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2026-28780 is a critical heap-based buffer overflow vulnerability in the mod_proxy_ajp module of Apache HTTP Server versions up to 2.4.66. A malicious AJP server can send a specially crafted message that causes mod_proxy_ajp to write 4 attacker-controlled bytes beyond the end of a heap buffer. This vulnerability can lead to a high-impact compromise affecting confidentiality, integrity, and availability. The issue is fixed in Apache HTTP Server version 2.4.67, and users are strongly advised to upgrade to this version to mitigate the risk.