Alerts This Week
Warning Icon 1 1,153
Alerts This Week
Warning Icon 1 1,153

Ubuntu 26.04 Apache HTTP Server Critical DoS Vulnerable 2026-49975

ubuntu
Calendar Grey June 4, 2026
Dist Ubuntu Esm H88
Apache HTTP Server faces a critical issue in Ubuntu leading to resource consumption and potential denial of service.
Apache HTTP Server could be made to consume excessive resources if it received specially crafted network traffic.

Summary

Apache HTTP Server could be made to consume excessive resources if it

received specially crafted network traffic.

Software Description:

- apache2: Apache HTTP server

Details:

It was discovered that Apache HTTP Server incorrectly handled certain

cookie headers in the HTTP/2 implementation. A remote attacker could

possibly use this issue to cause Apache HTTP Server to consume excessive

resources, resulting in a denial of service.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 26.04 LTS
  apache2                         2.4.66-2ubuntu2.2

Ubuntu 25.10
  apache2                         2.4.64-1ubuntu3.5

Ubuntu 24.04 LTS
  apache2                         2.4.58-1ubuntu8.13

Ubuntu 22.04 LTS
  apache2                         2.4.52-1ubuntu4.21

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-8384-1

CVE-2026-49975

Severity
critical
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-8384-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here