[Git][security-tracker-team/security-tracker][master] CVE-2026-34356/apache2

[Bastien Roucariès (@rouca)]

Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker


Commits:
42a44b55 by Bastien Roucariès at 2026-06-10T21:42:57+02:00
CVE-2026-34356/apache2

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2384,6 +2384,8 @@ CVE-2026-36786 (Shenzhen Tenda Technology Co., Ltd Tenda FH451 V1.0.0.9 was disc
 CVE-2026-34356 (Heap-based Buffer Overflow vulnerability in Apache HTTP Server with ma ...)
 	- apache2 <unfixed> (bug #1139340)
 	NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-34356
+	NOTE: Fixed by: https://github.com/apache/httpd/commit/403269396d24404e2576a9b20f96cd0b10574048 (2.4.68-rc1-candidate)
+	NOTE: Fixed by: https://github.com/apache/httpd/commit/a70753d294292e8c9f68758cfe3550d83f812129 (trunk)
 CVE-2026-34355 (A buffer overflow in mod_proxy_html in Apache HTTP Server 2.4.67 and e ...)
 	- apache2 <unfixed> (bug #1139340)
 	NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2026-34355



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/42a44b55bfb8ebe616cbcfa7bed5efe372bb7516

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/42a44b55bfb8ebe616cbcfa7bed5efe372bb7516
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260610/a5a6dcce/attachment.htm>