apache2 2.2.16-6+squeeze8 source package in Debian
Changelog
apache2 (2.2.16-6+squeeze8) squeeze; urgency=low
* CVE-2012-2687: mod_negotiation: Escape filenames in variant list to
prevent a possible XSS vulnerability for a site where untrusted users
can upload files to a location with MultiViews enabled.
* Send 408 status instead of 400 if reading of a request fails with a
timeout. This allows browsers to retry. Closes: #677086
* mod_cache: Prevent Partial Content responses from being cached and served
as normal response. Closes: #671204
* mpm_itk: Fix an issue where users can sometimes get spurious 403s on
persistent connections. Closes: #672333
-- Stefan Fritsch <email address hidden> Sun, 09 Sep 2012 23:08:04 +0200
Upload details
- Uploaded by:
- Debian Apache Maintainers
- Uploaded to:
- Squeeze
- Original maintainer:
- Debian Apache Maintainers
- Architectures:
- any
- Section:
- httpd
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Builds
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| apache2_2.2.16-6+squeeze8.dsc | 1.8 KiB | 97ecd4ae85440968b15fdb529989c8e31b24767dd1f9846110364b1f04bf3a58 |
| apache2_2.2.16.orig.tar.gz | 6.1 MiB | 72cdbaf0525b4c956532b308a0344ca7c287eb12759472481ae4affca71b6ed3 |
| apache2_2.2.16-6+squeeze8.diff.gz | 220.1 KiB | 6f45f0c0ca30b27bbe12696166b47be0318ead3d4bdac046369679dd15e19475 |
No changes file available.
