- CVE-2026-43951: mod_headers/mod_mime OOB read in merge_response_headers via multiple Content-Language values - CVE-2026-44119: mod_rewrite/mod_setenvif/mod_proxy_fcgi privilege escalation through expressions in .htaccess - CVE-2026-44185: mod_ssl OCSP outbound request stack buffer over-read with attacker-controlled responder - CVE-2026-44186: mod_proxy_ftp infinite loop via attacker-controlled backend FTP server - CVE-2026-44631: ap_regname heap underflow on crafted regular expressions in /// configuration - CVE-2026-48913: mod_http2 use-after-free when file handles are exhausted on upload requests