apache2 (2.0.55-4ubuntu2.12) dapper-security; urgency=low
* SECURITY UPDATE: denial of service via request that lacks a path in
mod_dav.
- debian/patches/120_CVE-2010-1452.dpatch: fix path handling in
modules/dav/main/util.c.
- CVE-2010-1452
* SECURITY UPDATE: denial of service via memory leak in
apr_brigade_split_line function.
- debian/patches/121_CVE-2010-1623.dpatch: properly destroy bucket in
srclib/apr-util/buckets/apr_brigade.c.
- CVE-2010-1623
Date: Thu, 18 Nov 2010 14:39:06 -0500
Changed-By: Marc Deslauriers <[email protected]>
Maintainer: Debian Apache Maintainers <[email protected]>
https://launchpad.net/ubuntu/dapper/+source/apache2/2.0.55-4ubuntu2.12
Format: 1.7
Date: Thu, 18 Nov 2010 14:39:06 -0500
Source: apache2
Binary: apache2-utils apache2 apache2-prefork-dev apache2-mpm-prefork
apache2-doc libapr0-dev apache2-mpm-worker libapr0 apache2-threaded-dev
apache2-common apache2-mpm-perchild
Architecture: source
Version: 2.0.55-4ubuntu2.12
Distribution: dapper-security
Urgency: low
Maintainer: Debian Apache Maintainers <[email protected]>
Changed-By: Marc Deslauriers <[email protected]>
Description:
apache2 - next generation, scalable, extendable web server
apache2-common - next generation, scalable, extendable web server
apache2-doc - documentation for apache2
apache2-mpm-perchild - experimental high speed perchild threaded model for
Apache2
apache2-mpm-prefork - traditional model for Apache2
apache2-mpm-worker - high speed threaded model for Apache2
apache2-prefork-dev - development headers for apache2
apache2-threaded-dev - development headers for apache2
apache2-utils - utility programs for webservers
libapr0 - the Apache Portable Runtime
libapr0-dev - development headers for libapr
Changes:
apache2 (2.0.55-4ubuntu2.12) dapper-security; urgency=low
.
* SECURITY UPDATE: denial of service via request that lacks a path in
mod_dav.
- debian/patches/120_CVE-2010-1452.dpatch: fix path handling in
modules/dav/main/util.c.
- CVE-2010-1452
* SECURITY UPDATE: denial of service via memory leak in
apr_brigade_split_line function.
- debian/patches/121_CVE-2010-1623.dpatch: properly destroy bucket in
srclib/apr-util/buckets/apr_brigade.c.
- CVE-2010-1623
Files:
ea94bede6f84eff66e7ddbed098314b3 1823 net optional
apache2_2.0.55-4ubuntu2.12.dsc
3a8ddb93ba4acb10e5a25f8fedff76c8 134865 net optional
apache2_2.0.55-4ubuntu2.12.diff.gz
--
dapper-changes mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/dapper-changes
