[CLSA-2026:1781627270] httpd: Fix of 5 CVEs
Type:
security
Severity:
Critical
Release date:
2026-06-16 16:28:08 UTC
Description:
- CVE-2026-29167: mod_ldap: use-after-free in per-directory configuration — deep-copy the client certificate list (and referenced path/password strings) into the connection pool instead of a shallow header copy - CVE-2026-29170: mod_proxy_ftp: cross-site scripting in the generated FTP directory listing — escape href filenames with ap_os_escape_path() wrapped in ap_escape_html() instead of ap_escape_uri() - CVE-2026-34355: mod_proxy_html: heap buffer overflow reachable from an untrusted backend — replace hand-rolled buffer management with the ap_varbuf API - CVE-2026-42535: mod_dav_fs: deny WebDAV access to/within the .DAV state directory in dav_fs_get_resource() - CVE-2026-42536: mod_xml2enc: heap buffer overflow in fix_skipto — keep the buffer length (bblen) accounting in sync when advancing the buffer
CVEs fixed:
Updated packages:
  • httpd-2.4.6-99.0.5.el7_9.1.tuxcare.els12.x86_64.rpm
    sha:163bb34a5c0d407a18833f2450345a5e47e961a70da942e33ad12187acd73f85
  • httpd-devel-2.4.6-99.0.5.el7_9.1.tuxcare.els12.x86_64.rpm
    sha:3b164ded5cefd6a3864ec0ebf1132030a942d656dc8e62157e4581f13b1fc6ce
  • httpd-manual-2.4.6-99.0.5.el7_9.1.tuxcare.els12.noarch.rpm
    sha:0a0efef8990c51d19c33e127ce4cee28678a18f8a4bffce7e80b51874992a6a1
  • httpd-tools-2.4.6-99.0.5.el7_9.1.tuxcare.els12.x86_64.rpm
    sha:b8d4eaae6b723e917b775ac22e54f5f053a48164bf030ee1f8d3022bb5d0455c
  • mod_ldap-2.4.6-99.0.5.el7_9.1.tuxcare.els12.x86_64.rpm
    sha:f3d93b8cb2d83fb3f6517be4379f3fdb2a584ef047835f4bc0a957d2889d5328
  • mod_proxy_html-2.4.6-99.0.5.el7_9.1.tuxcare.els12.x86_64.rpm
    sha:b177504626ea6b39ee5e2de6d2274916a45b62187ee0c304a9dd08fe9773c034
  • mod_session-2.4.6-99.0.5.el7_9.1.tuxcare.els12.x86_64.rpm
    sha:886fdb2b235826150e2d72a12a8683491699216633493ee01cd46b1e7e79112e
  • mod_ssl-2.4.6-99.0.5.el7_9.1.tuxcare.els12.x86_64.rpm
    sha:48b22086b6ae40f6efd0d07607d643a2e415aec5b3171ed679dc2d59c20b99ae
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.