Qhov project Apache HTTP Server tau tso tawm ib qho kev tso tawm txij nkawm. httpd 2.4.67, uas qhov tsis muaj zog tau raug tshem tawm CVE-2026-23918 hauv kev siv HTTP/2. Qhov teeb meem tau raug ntsuas tias yog qhov tseem ceeb heev ib qho tseem ceeb thiab muaj feem cuam tshuam nrog qhov yuam kev hauv chav kawm ob chav pub dawb thaum daws qhov teeb meem pib dua kev sib txuas thaum ntxov hauv HTTP/2. Nyob rau hauv cov xwm txheej tsis zoo, qhov yuam kev tuaj yeem ua rau tsis yog tsuas yog ua rau muaj kev sib tsoo ntawm cov txheej txheem ua haujlwm, tab sis kuj ua rau tej zaum yuav muaj peev xwm ua tiav cov lej nyob deb.
Raws li Apache cov lus piav qhia, qhov tsis muaj zog cuam tshuam rau Apache HTTP neeg rau zaub mov 2.4.66Cov neeg siv ntawm qhov version no raug qhia kom hloov kho mus rau 2.4.67, qhov twg qhov teeb meem tau kho lawm. Bartlomiej Dmitruk los ntawm striga.ai thiab Stanislaw Strzalkowski los ntawm isec.pl tau teev tseg ua cov neeg uas tau tshawb pom qhov tsis muaj zog.
Daim ntawv tso tawm changelog kuj sau tseg qhov hloov tshiab. mod_http 2 mus txog version 2.0.37, uas tiv thaiv kev ntxuav cov kwj deg uas ua rau muaj kev ywj pheej ob zaug, thiab tom qab ntawd mus rau 2.0.38 thiab 2.0.39. Ntxiv rau CVE-2026-23918, qhov kev tso tawm no hais txog ntau yam teeb meem kev ruaj ntseg hauv mod_proxy_ajp, mod_auth_digest, mod_authn_socache, mod_md, mod_rewrite, thiab lwm yam khoom.
Tso tawm Apache httpd 2.4.67 Luam tawm rau lub Tsib Hlis 4, 2026, qhov kev tso tawm no yog qhov version tam sim no pom zoo ntawm 2.4.x ceg ruaj khov. Cov thawj coj siv Apache nrog HTTP / 2 enabled yuav tsum xav txog qhov kev hloov kho no ua qhov tseem ceeb, tshwj xeeb tshaj yog tias 2.4.66 twb siv lawm.
Tau qhov twg los: linux.org.ru ua
