HTTP-Daemon vulnerability
Published: Wed, 10 Jun 2026 13:49
Summary
HTTP-Daemon could be made to run programs if it received specially crafted network traffic.
Details
It was discovered that HTTP-Daemon incorrectly handled untrusted input under certain circumstances. A remote attacker could possibly use this issue to execute arbitrary commands, create or overwrite arbitrary files, or expose sensitive information.
Recommended actions per Ubuntu release
StackPatch playbook auto-generated per release codename and per affected package.
Ubuntu bionic
libhttp-daemon-perl→6.01-1ubuntu0.1+esm1apt_upgradeStandard apt upgrade. Install 6.01-1ubuntu0.1+esm1 from the apt repo.
sudo apt-get update sudo apt-get install --only-upgrade -y libhttp-daemon-perl
Most apt upgrades restart their service automatically. needrestart lists anything else.
libhttp-daemon-perl→6.01-1ubuntu0.1+esm1apt_upgradeStandard apt upgrade. Install 6.01-1ubuntu0.1+esm1 from the apt repo.
sudo apt-get update sudo apt-get install --only-upgrade -y libhttp-daemon-perl
Most apt upgrades restart their service automatically. needrestart lists anything else.
Ubuntu focal
libhttp-daemon-perl→6.06-1ubuntu0.1+esm1apt_upgradeStandard apt upgrade. Install 6.06-1ubuntu0.1+esm1 from the apt repo.
sudo apt-get update sudo apt-get install --only-upgrade -y libhttp-daemon-perl
Most apt upgrades restart their service automatically. needrestart lists anything else.
libhttp-daemon-perl→6.06-1ubuntu0.1+esm1apt_upgradeStandard apt upgrade. Install 6.06-1ubuntu0.1+esm1 from the apt repo.
sudo apt-get update sudo apt-get install --only-upgrade -y libhttp-daemon-perl
Most apt upgrades restart their service automatically. needrestart lists anything else.
Ubuntu jammy
libhttp-daemon-perl→6.13-1ubuntu0.2apt_upgradeStandard apt upgrade. Install 6.13-1ubuntu0.2 from the apt repo.
sudo apt-get update sudo apt-get install --only-upgrade -y libhttp-daemon-perl
Most apt upgrades restart their service automatically. needrestart lists anything else.
libhttp-daemon-perl→6.13-1ubuntu0.2apt_upgradeStandard apt upgrade. Install 6.13-1ubuntu0.2 from the apt repo.
sudo apt-get update sudo apt-get install --only-upgrade -y libhttp-daemon-perl
Most apt upgrades restart their service automatically. needrestart lists anything else.
Ubuntu noble
libhttp-daemon-perl→6.16-1ubuntu0.24.04.1apt_upgradeStandard apt upgrade. Install 6.16-1ubuntu0.24.04.1 from the apt repo.
sudo apt-get update sudo apt-get install --only-upgrade -y libhttp-daemon-perl
Most apt upgrades restart their service automatically. needrestart lists anything else.
libhttp-daemon-perl→6.16-1ubuntu0.24.04.1apt_upgradeStandard apt upgrade. Install 6.16-1ubuntu0.24.04.1 from the apt repo.
sudo apt-get update sudo apt-get install --only-upgrade -y libhttp-daemon-perl
Most apt upgrades restart their service automatically. needrestart lists anything else.
Ubuntu questing
libhttp-daemon-perl→6.16-1ubuntu0.25.10.1apt_upgradeStandard apt upgrade. Install 6.16-1ubuntu0.25.10.1 from the apt repo.
sudo apt-get update sudo apt-get install --only-upgrade -y libhttp-daemon-perl
Most apt upgrades restart their service automatically. needrestart lists anything else.
libhttp-daemon-perl→6.16-1ubuntu0.25.10.1apt_upgradeStandard apt upgrade. Install 6.16-1ubuntu0.25.10.1 from the apt repo.
sudo apt-get update sudo apt-get install --only-upgrade -y libhttp-daemon-perl
Most apt upgrades restart their service automatically. needrestart lists anything else.
Ubuntu resolute
libhttp-daemon-perl→6.16-1ubuntu0.26.04.1apt_upgradeStandard apt upgrade. Install 6.16-1ubuntu0.26.04.1 from the apt repo.
sudo apt-get update sudo apt-get install --only-upgrade -y libhttp-daemon-perl
Most apt upgrades restart their service automatically. needrestart lists anything else.
libhttp-daemon-perl→6.16-1ubuntu0.26.04.1apt_upgradeStandard apt upgrade. Install 6.16-1ubuntu0.26.04.1 from the apt repo.
sudo apt-get update sudo apt-get install --only-upgrade -y libhttp-daemon-perl
Most apt upgrades restart their service automatically. needrestart lists anything else.
Ubuntu trusty
libhttp-daemon-perl→6.01-1ubuntu0.14.04~esm2apt_upgrade_esmFixed at 6.01-1ubuntu0.14.04~esm2 — ESM-only. Enable Ubuntu Pro (free for 5 personal machines) or treat as watch item.
sudo pro attach <token> sudo apt-get update sudo apt-get install --only-upgrade -y libhttp-daemon-perl=6.01-1ubuntu0.14.04~esm2
Sign up at https://ubuntu.com/pro. Free for personal + small-team use.
libhttp-daemon-perl→6.01-1ubuntu0.14.04~esm2apt_upgrade_esmFixed at 6.01-1ubuntu0.14.04~esm2 — ESM-only. Enable Ubuntu Pro (free for 5 personal machines) or treat as watch item.
sudo pro attach <token> sudo apt-get update sudo apt-get install --only-upgrade -y libhttp-daemon-perl=6.01-1ubuntu0.14.04~esm2
Sign up at https://ubuntu.com/pro. Free for personal + small-team use.
Ubuntu xenial
libhttp-daemon-perl→6.01-1ubuntu0.16.04~esm2apt_upgrade_esmFixed at 6.01-1ubuntu0.16.04~esm2 — ESM-only. Enable Ubuntu Pro (free for 5 personal machines) or treat as watch item.
sudo pro attach <token> sudo apt-get update sudo apt-get install --only-upgrade -y libhttp-daemon-perl=6.01-1ubuntu0.16.04~esm2
Sign up at https://ubuntu.com/pro. Free for personal + small-team use.
libhttp-daemon-perl→6.01-1ubuntu0.16.04~esm2apt_upgrade_esmFixed at 6.01-1ubuntu0.16.04~esm2 — ESM-only. Enable Ubuntu Pro (free for 5 personal machines) or treat as watch item.
sudo pro attach <token> sudo apt-get update sudo apt-get install --only-upgrade -y libhttp-daemon-perl=6.01-1ubuntu0.16.04~esm2
Sign up at https://ubuntu.com/pro. Free for personal + small-team use.
Are YOU affected by USN-8419-1?
5-second check on your actual server. Reads /etc/os-release, uname -r, and dpkg-query; matches against the live USN + Debian Security Tracker feeds; tells you whether USN-8419-1 (and any other live CVE) applies. Anonymous, no signup.
curl https://mindsparkstack.com/scan.sh | bash
StackPatch runs this match against YOUR installed packages every hour
Free 1-server / $99 lifetime founder seat (50 only) / $19+/mo monthly. Indie pricing.