An update for httpd is now available for openEuler-24.03-LTS-SP1 Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2026-2746 Final 1.0 1.0 2026-06-24 Initial 2026-06-24 2026-06-24 openEuler SA Tool V1.0 2026-06-24 httpd security update An update for httpd is now available for openEuler-24.03-LTS-SP1 Apache HTTP Server is a powerful and flexible HTTP/1.1 compliant web server. Security Fix(es): Use After Free vulnerability in Apache HTTP Server with mod_ldap in per-directory configuration This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue.(CVE-2026-29167) A cross-site scripting vulnerability exists in mod_proxy_ftp's HTML directory list generation in Apache HTTP Server 2.4.67 and earlier when listing FTP directory contents either via forward or reverse proxy configuration. Users are recommended to upgrade to version 2.4.68, which fixes this issue.(CVE-2026-29170) A buffer overflow in mod_proxy_html in Apache HTTP Server 2.4.67 and earlier allows an attack by an untrusted backend. Users are recommended to upgrade to version 2.4.68, which fixes this issue.(CVE-2026-34355) Heap-based Buffer Overflow vulnerability in Apache HTTP Server with malicious backend servers and ProxyPassReverseCookie* This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue.(CVE-2026-34356) A path handling issue in mod_dav_fs in Apache 2.4.67 and earlier allows a WebDAV content author to directly manipulate trusted DAV property databases, potentially causing child process crashes. Users are recommended to upgrade to version 2.4.68, which fixes this issue.(CVE-2026-42535) Heap-based Buffer Overflow vulnerability in Apache HTTP Server with mod_xml2enc, xml2StartParse, and untrusted content This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue.(CVE-2026-42536) Out-of-bounds Read vulnerability in Apache HTTP Server with mod_headers and mod_mime and multiple response languages. This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67.(CVE-2026-43951) Improper Privilege Management vulnerability in Apache HTTP Server 2.4.67 and earlier allows local .htaccess authors to read files with the privileges of the httpd user. This issue affects Apache HTTP Server: from through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue.(CVE-2026-44119) Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in the mod_proxy_ftp module in Apache HTTP Server with an attacker controlled backend FTP server. This issue affects undefined: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue.(CVE-2026-44186) Buffer Underwrite vulnerability in Apache HTTP Server on crafted regular expressions in the configuration. This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue.(CVE-2026-44631) Use After Free vulnerability in Apache HTTP Server module mod_http2 when file handles are already exhausted. This issue affects Apache HTTP Server: from 2.4.55 through 2.4.67.(CVE-2026-48913) An update for httpd is now available for openEuler-24.03-LTS-SP1. openEuler Security has rated this update as having a security impact of critical. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. Critical httpd https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2746 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-29167 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-29170 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-34355 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-34356 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-42535 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-42536 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-43951 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-44119 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-44186 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-44631 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-48913 https://nvd.nist.gov/vuln/detail/CVE-2026-29167 https://nvd.nist.gov/vuln/detail/CVE-2026-29170 https://nvd.nist.gov/vuln/detail/CVE-2026-34355 https://nvd.nist.gov/vuln/detail/CVE-2026-34356 https://nvd.nist.gov/vuln/detail/CVE-2026-42535 https://nvd.nist.gov/vuln/detail/CVE-2026-42536 https://nvd.nist.gov/vuln/detail/CVE-2026-43951 https://nvd.nist.gov/vuln/detail/CVE-2026-44119 https://nvd.nist.gov/vuln/detail/CVE-2026-44186 https://nvd.nist.gov/vuln/detail/CVE-2026-44631 https://nvd.nist.gov/vuln/detail/CVE-2026-48913 openEuler-24.03-LTS-SP1 httpd-2.4.58-20.oe2403sp1.aarch64.rpm httpd-debuginfo-2.4.58-20.oe2403sp1.aarch64.rpm httpd-debugsource-2.4.58-20.oe2403sp1.aarch64.rpm httpd-devel-2.4.58-20.oe2403sp1.aarch64.rpm httpd-tools-2.4.58-20.oe2403sp1.aarch64.rpm mod_ldap-2.4.58-20.oe2403sp1.aarch64.rpm mod_md-2.4.58-20.oe2403sp1.aarch64.rpm mod_proxy_html-2.4.58-20.oe2403sp1.aarch64.rpm mod_session-2.4.58-20.oe2403sp1.aarch64.rpm mod_ssl-2.4.58-20.oe2403sp1.aarch64.rpm httpd-2.4.58-20.oe2403sp1.src.rpm httpd-2.4.58-20.oe2403sp1.x86_64.rpm httpd-debuginfo-2.4.58-20.oe2403sp1.x86_64.rpm httpd-debugsource-2.4.58-20.oe2403sp1.x86_64.rpm httpd-devel-2.4.58-20.oe2403sp1.x86_64.rpm httpd-tools-2.4.58-20.oe2403sp1.x86_64.rpm mod_ldap-2.4.58-20.oe2403sp1.x86_64.rpm mod_md-2.4.58-20.oe2403sp1.x86_64.rpm mod_proxy_html-2.4.58-20.oe2403sp1.x86_64.rpm mod_session-2.4.58-20.oe2403sp1.x86_64.rpm mod_ssl-2.4.58-20.oe2403sp1.x86_64.rpm httpd-filesystem-2.4.58-20.oe2403sp1.noarch.rpm httpd-help-2.4.58-20.oe2403sp1.noarch.rpm Use After Free vulnerability in Apache HTTP Server with mod_ldap in per-directory configuration This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue. 2026-06-24 CVE-2026-29167 openEuler-24.03-LTS-SP1 Critical 9.8 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H httpd security update 2026-06-24 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2746 A cross-site scripting vulnerability exists in mod_proxy_ftp's HTML directory list generation in Apache HTTP Server 2.4.67 and earlier when listing FTP directory contents either via forward or reverse proxy configuration. Users are recommended to upgrade to version 2.4.68, which fixes this issue. 2026-06-24 CVE-2026-29170 openEuler-24.03-LTS-SP1 Medium 6.1 AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N httpd security update 2026-06-24 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2746 A buffer overflow in mod_proxy_html in Apache HTTP Server 2.4.67 and earlier allows an attack by an untrusted backend. Users are recommended to upgrade to version 2.4.68, which fixes this issue. 2026-06-24 CVE-2026-34355 openEuler-24.03-LTS-SP1 High 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H httpd security update 2026-06-24 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2746 Heap-based Buffer Overflow vulnerability in Apache HTTP Server with malicious backend servers and ProxyPassReverseCookie* This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue. 2026-06-24 CVE-2026-34356 openEuler-24.03-LTS-SP1 High 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H httpd security update 2026-06-24 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2746 A path handling issue in mod_dav_fs in Apache 2.4.67 and earlier allows a WebDAV content author to directly manipulate trusted DAV property databases, potentially causing child process crashes. Users are recommended to upgrade to version 2.4.68, which fixes this issue. 2026-06-24 CVE-2026-42535 openEuler-24.03-LTS-SP1 Critical 9.1 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H httpd security update 2026-06-24 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2746 Heap-based Buffer Overflow vulnerability in Apache HTTP Server with mod_xml2enc, xml2StartParse, and untrusted content This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue. 2026-06-24 CVE-2026-42536 openEuler-24.03-LTS-SP1 High 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H httpd security update 2026-06-24 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2746 Out-of-bounds Read vulnerability in Apache HTTP Server with mod_headers and mod_mime and multiple response languages. This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. 2026-06-24 CVE-2026-43951 openEuler-24.03-LTS-SP1 Medium 6.5 AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N httpd security update 2026-06-24 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2746 Improper Privilege Management vulnerability in Apache HTTP Server 2.4.67 and earlier allows local .htaccess authors to read files with the privileges of the httpd user. This issue affects Apache HTTP Server: from through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue. 2026-06-24 CVE-2026-44119 openEuler-24.03-LTS-SP1 Medium 5.5 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N httpd security update 2026-06-24 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2746 Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in the mod_proxy_ftp module in Apache HTTP Server with an attacker controlled backend FTP server. This issue affects undefined: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue. 2026-06-24 CVE-2026-44186 openEuler-24.03-LTS-SP1 High 7.3 AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L httpd security update 2026-06-24 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2746 Buffer Underwrite vulnerability in Apache HTTP Server on crafted regular expressions in the configuration. This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue. 2026-06-24 CVE-2026-44631 openEuler-24.03-LTS-SP1 Critical 9.8 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H httpd security update 2026-06-24 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2746 Use After Free vulnerability in Apache HTTP Server module mod_http2 when file handles are already exhausted. This issue affects Apache HTTP Server: from 2.4.55 through 2.4.67. 2026-06-24 CVE-2026-48913 openEuler-24.03-LTS-SP1 High 7.3 AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L httpd security update 2026-06-24 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2746