[<prev] [next>] [day] [month] [year] [list]
Message-ID: <041a02c5-9715-1350-1749-35c19d7cf6b7@apache.org>
Date: Tue, 05 May 2026 16:47:39 +0000
From: Eric Covener <covener@...che.org>
To: oss-security@...ts.openwall.com
Subject: CVE-2026-28780: Apache HTTP Server: buffer overflow in
mod_proxy_ajp via ajp_msg_check_header()
Severity: low
Affected versions:
- Apache HTTP Server through 2.4.66
Description:
Heap-based Buffer Overflow vulnerability in mod_proxy_ajp of Apache HTTP Server.
If mod_proxy_ajp connects to a malicious AJP server this AJP server can send a malicious AJP message back to mod_proxy_ajp and cause it to write 4 attacker controlled bytes after the end of a heap based buffer.
This issue affects Apache HTTP Server: through 2.4.66.
Users are recommended to upgrade to version 2.4.67, which fixes the issue.
Credit:
Andrew Lacambra (finder)
Elhanan Haenel (finder)
Tianshuo Han (<hantianshuo233@...il.com>) (finder)
Tristan Madani (finder)
References:
https://httpd.apache.org/security/vulnerabilities_24.html
https://httpd.apache.org/
https://www.cve.org/CVERecord?id=CVE-2026-28780
Timeline:
2026-02-04: reported
2026-03-18: reported by 3rd finder
2026-02-28: reported by 2nd finder
Powered by blists - more mailing lists
Please check out the
Open Source Software Security Wiki, which is counterpart to this
mailing list.
Confused about mailing lists and their use?
Read about mailing lists on Wikipedia
and check out these
guidelines on proper formatting of your messages.
