Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted apache2 2.4.67-1~deb11u3 (source) into oldoldstable-security
Date: Fri, 12 Jun 2026 17:40:18 +0000
Signed by: Bastien ROUCARIÈS <rouca@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 12 Jun 2026 17:14:47 +0200
Source: apache2
Architecture: source
Version: 2.4.67-1~deb11u3
Distribution: bullseye-security
Urgency: medium
Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>
Changed-By: Bastien Roucariès <rouca@debian.org>
Closes: 1139340
Changes:
 apache2 (2.4.67-1~deb11u3) bullseye-security; urgency=medium
 .
   * Multiple security fixes (Closes: #1139340)
   * Fix CVE-2026-29167:
     Use After Free vulnerability in Apache HTTP Server with mod_ldap
     in per-directory configuration.
   * Fix CVE-2026-29170:
     A cross-site scripting vulnerability exists in mod_proxy_ftp's
     HTML directory list generation in Apache HTTP
     when listing FTP directory contents either via forward
     or reverse proxy configuration.
   * Fix CVE-2026-34355:
     A buffer overflow in mod_proxy_html allows an attack
     by an untrusted backend.
   * Fix CVE-2026-34356:
     Heap-based Buffer Overflow vulnerability with malicious
     backend servers and ProxyPassReverseCookie.
   * Fix CVE-2026-42535:
     A path handling issue in mod_dav_fs allows a WebDAV
     content author to directly manipulate trusted DAV property databases,
     potentially causing child process crashes
   * Fix CVE-2026-42536:
     Heap-based Buffer Overflow vulnerability with mod_xml2enc,
     xml2StartParse, and untrusted content.
   * Fix CVE-2026-43951:
     Out-of-bounds Read vulnerability in Apache HTTP Server with mod_headers
     and mod_mime and multiple response languages.
   * Fix CVE-2026-44119:
     Improper Privilege Management vulnerability allows local .htaccess authors
     to read files with the privileges of the httpd user.
   * Fix CVE-2026-44185
     Buffer Over-read vulnerability via outbound OCSP requests to an attacker
     controlled OCSP server
   * Fix CVE-2026-44186:
     Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in
     the mod_proxy_ftp module with an attacker controlled backend FTP server.
   * Fix CVE-2026-44631:
     Buffer Underwrite vulnerability in Apache HTTP Server on crafted
     regular expressions in the configuration.
   * Fix CVE-2026-48913:
     Use After Free vulnerability in Apache HTTP Server module
     mod_http2 when file handles are already exhausted.
   * Fix autopkgtest by backporting testsuite
Checksums-Sha1:
 6be9c1b3658a45aca1a5ef2684b6e6db24d12079 3578 apache2_2.4.67-1~deb11u3.dsc
 46e72f3395f75d49d6c8ab20c31521bf1a3d8107 9714011 apache2_2.4.67.orig.tar.gz
 837c2618ed0b131cdab25466f45bceb7fb73c291 870 apache2_2.4.67.orig.tar.gz.asc
 cd35f5542a78a33348fc39a017104a4fcca4b721 834564 apache2_2.4.67-1~deb11u3.debian.tar.xz
 7a911418b3789e84efbd8b4e4f53357afeb6a2f1 5680 apache2_2.4.67-1~deb11u3_source.buildinfo
Checksums-Sha256:
 ba1dd2c29530d42084c89b47b8f2c719706ca587d60ec4f62a63fbb75c3528a5 3578 apache2_2.4.67-1~deb11u3.dsc
 10a578d199c3930250534fac629995f34ef7571709a7c88c45239e1fdc88cf77 9714011 apache2_2.4.67.orig.tar.gz
 d8a6e18c2f892aa901121d14852717bddf42e430b0f48f853a4effce7b89f348 870 apache2_2.4.67.orig.tar.gz.asc
 1b1fdbf5881cfc880278f16e6c803291594fcf6e4041acd736755506ec897448 834564 apache2_2.4.67-1~deb11u3.debian.tar.xz
 e2a21904f343568a998986178cd3cce704938dd856ec8af039b9c313de9ab71a 5680 apache2_2.4.67-1~deb11u3_source.buildinfo
Files:
 c79bc7d532301ee9a026520bd40c6ec2 3578 httpd optional apache2_2.4.67-1~deb11u3.dsc
 cf51fc1963b35360240f4225c2921d4b 9714011 httpd optional apache2_2.4.67.orig.tar.gz
 8831f0957bcf06bb810d7def20d5d790 870 httpd optional apache2_2.4.67.orig.tar.gz.asc
 e5e12e49fa895d304be049a8c9d9761f 834564 httpd optional apache2_2.4.67-1~deb11u3.debian.tar.xz
 0cebf604f4328112d8315b7618a25613 5680 httpd optional apache2_2.4.67-1~deb11u3_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=5Rv/
-----END PGP SIGNATURE-----
News for package apache2
