On Sat, May 26, 2018 at 02:27:18PM -0400, Roberto C. Sánchez wrote: > Hello, > > I have prepared a new apache2 package (version 2.2.22-13+deb7u13) to > address CVE-2017-15710, CVE-2018-1301, and CVE-2018-1312. The patch for > CVE-2018-1312 did not apply cleanly, required backporting an additional > commit from the Apache history, as well as adjusting the function calls > for logging and managing pool data. > > As I do not use digest authentication, I thought it prudent to give > others the opportunity to test these packages before I upload them. > Unless I hear a negative report, I intend to upload on Tuesday or > Wednesday. > The packages are available here: https://people.debian.org/~roberto/
Regards, -Roberto -- Roberto C. Sánchez
