Ubuntu 18.04 Apache2 Important HTTP Response Issues USN-8338-2
ubuntu
May 29, 2026
USN-8338-1 introduced a regression in Apache HTTP Server
Summary
USN-8338-1 introduced a regression in Apache HTTP Server
Software Description:
- apache2: Apache HTTP server
Details:
USN-8338-1 fixed vulnerabilities in Apache HTTP Server. The update
introduced a regression that prevented mod_http2 from loading on Ubuntu
18.04 LTS. This update fixes the problem.
We apologize for the inconvenience.
Original advisory details:
It was discovered that Apache HTTP Server incorrectly handled certain
response headers. An attacker could possibly use this issue to perform
HTTP response splitting attacks. This issue only affected Ubuntu 14.04
LTS. (CVE-2023-38709)
Will Dormann and David Warren discovered that Apache HTTP Server's HTTP/2
implementation did not properly reclaim memory when streams were reset by
clients. A remote attacker could possibly use this issue to cause Apache
HTTP Server to consume resources, leading to a denial of service. This
issue only affected Ubuntu 18.04 LTS. (CVE-2023-45802)
Keran Mu and Jianjun Chen discovere...
Update Instructions
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 18.04 LTS
apache2 2.4.29-1ubuntu4.27+esm8
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.References
https://ubuntu.com/security/notices/USN-8338-2
https://ubuntu.com/security/notices/USN-8338-1
https://bugs.launchpad.net/bugs/2154546
PREVIOUS 
NEXT Severity
important
Lowest
Low
Medium
High
Critical
Ubuntu Security Notice USN-8338-2
Package Information
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!