apache2 2.2.16-1ubuntu3.4 source package in Ubuntu

Changelog

apache2 (2.2.16-1ubuntu3.4) maverick-security; urgency=low

  * SECURITY UPDATE: mod_proxy reverse proxy exposure (LP: #877740)
    - debian/patches/212_CVE-2011-3368.dpatch: return 400
      on invalid requests. (patch courtesy of Michael Jeanson)
    - debian/patches/214_CVE-2011-3368_part2.dpatch: fix same for http
      0.9 protocol
    - CVE-2011-3368
  * SECURITY UPDATE: mod_proxy_ajp denial of service (LP: #871674)
    - debian/patches/213_CVE-2011-3348.dpatch: return
      HTTP_NOT_IMPLEMENTED when AJP_EBAD_METHOD is requested
    - CVE-2011-3348
  * SECURITY UPDATE: mpm-itk failure to drop privileges in certain
    configurations
    - debian/mpm-itk/patches/11-CVE-2011-1176.patch: merge
      configurations correctly
    - CVE-2011-1176
  * Include additional fixes for regressions introduced by
    CVE-2011-3192 fixes
    - debian/patches/085_CVE-2011-3192_regression_part2.dpatch:
      take upstream fixes for byterange_filter.c through the 2.2.21
      release except for the added MaxRanges configuration option along
      with a fix staged for 2.2.22.
 -- Steve Beattie <email address hidden>   Wed, 02 Nov 2011 17:23:07 -0700

Upload details

Uploaded by:
Steve Beattie on 2011-11-03
Uploaded to:
Maverick
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
httpd
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
apache2_2.2.16.orig.tar.gz 6.1 MiB 72cdbaf0525b4c956532b308a0344ca7c287eb12759472481ae4affca71b6ed3
apache2_2.2.16-1ubuntu3.4.diff.gz 217.4 KiB 6140f638debf20b00fc0d7ef65abbdbf4059efd2f736cccf659d0fe80e699e14
apache2_2.2.16-1ubuntu3.4.dsc 2.6 KiB 462b940fcb382c9c75b86d4140c86323718c5c68a5b16e33997c312f756341c9

View changes file

Binary packages built by this source

apache2: No summary available for apache2 in ubuntu maverick.

No description available for apache2 in ubuntu maverick.

apache2-doc: No summary available for apache2-doc in ubuntu maverick.

No description available for apache2-doc in ubuntu maverick.

apache2-mpm-event: No summary available for apache2-mpm-event in ubuntu maverick.

No description available for apache2-mpm-event in ubuntu maverick.

apache2-mpm-itk: No summary available for apache2-mpm-itk in ubuntu maverick.

No description available for apache2-mpm-itk in ubuntu maverick.

apache2-mpm-prefork: No summary available for apache2-mpm-prefork in ubuntu maverick.

No description available for apache2-mpm-prefork in ubuntu maverick.

apache2-mpm-worker: No summary available for apache2-mpm-worker in ubuntu maverick.

No description available for apache2-mpm-worker in ubuntu maverick.

apache2-prefork-dev: No summary available for apache2-prefork-dev in ubuntu maverick.

No description available for apache2-prefork-dev in ubuntu maverick.

apache2-suexec: No summary available for apache2-suexec in ubuntu maverick.

No description available for apache2-suexec in ubuntu maverick.

apache2-suexec-custom: No summary available for apache2-suexec-custom in ubuntu maverick.

No description available for apache2-suexec-custom in ubuntu maverick.

apache2-threaded-dev: No summary available for apache2-threaded-dev in ubuntu maverick.

No description available for apache2-threaded-dev in ubuntu maverick.

apache2-utils: No summary available for apache2-utils in ubuntu maverick.

No description available for apache2-utils in ubuntu maverick.

apache2.2-bin: No summary available for apache2.2-bin in ubuntu maverick.

No description available for apache2.2-bin in ubuntu maverick.

apache2.2-common: No summary available for apache2.2-common in ubuntu maverick.

No description available for apache2.2-common in ubuntu maverick.