apache2 2.4.54-2ubuntu1.2 source package in Ubuntu
Changelog
apache2 (2.4.54-2ubuntu1.2) kinetic-security; urgency=medium
* SECURITY UPDATE: HTTP request splitting with mod_rewrite and mod_proxy
- debian/patches/CVE-2023-25690-1.patch: don't forward invalid query
strings in modules/http2/mod_proxy_http2.c,
modules/mappers/mod_rewrite.c, modules/proxy/mod_proxy_ajp.c,
modules/proxy/mod_proxy_balancer.c, modules/proxy/mod_proxy_http.c,
modules/proxy/mod_proxy_wstunnel.c.
- debian/patches/CVE-2023-25690-2.patch: Fix missing APLOGNO in
modules/http2/mod_proxy_http2.c.
- CVE-2023-25690
* SECURITY UPDATE: mod_proxy_uwsgi HTTP response splitting
- debian/patches/CVE-2023-27522.patch: stricter backend HTTP response
parsing/validation in modules/proxy/mod_proxy_uwsgi.c.
- CVE-2023-27522
-- Marc Deslauriers <email address hidden> Wed, 08 Mar 2023 12:31:20 -0500
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Kinetic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- httpd
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| apache2_2.4.54.orig.tar.gz | 9.3 MiB | c687b99c446c0ef345e7d86c21a8e15fc074b7d5152c4fe22b0463e2be346ffb |
| apache2_2.4.54-2ubuntu1.2.debian.tar.xz | 901.1 KiB | 41d91d1ed0dceccbafdd04939d7a53e27837c2be979aaabdfd4294070dd580b5 |
| apache2_2.4.54-2ubuntu1.2.dsc | 3.3 KiB | 9da06fd5306d77b80d911190d11b63b078a5e61ad23162c6209eebe1575e6936 |
Available diffs
Binary packages built by this source
- apache2: No summary available for apache2 in ubuntu kinetic.
No description available for apache2 in ubuntu kinetic.
- apache2-bin: No summary available for apache2-bin in ubuntu kinetic.
No description available for apache2-bin in ubuntu kinetic.
- apache2-bin-dbgsym: No summary available for apache2-bin-dbgsym in ubuntu kinetic.
No description available for apache2-bin-dbgsym in ubuntu kinetic.
- apache2-data: No summary available for apache2-data in ubuntu kinetic.
No description available for apache2-data in ubuntu kinetic.
- apache2-dev: No summary available for apache2-dev in ubuntu kinetic.
No description available for apache2-dev in ubuntu kinetic.
- apache2-doc: No summary available for apache2-doc in ubuntu kinetic.
No description available for apache2-doc in ubuntu kinetic.
- apache2-ssl-dev: No summary available for apache2-ssl-dev in ubuntu kinetic.
No description available for apache2-ssl-dev in ubuntu kinetic.
- apache2-suexec-custom: No summary available for apache2-suexec-custom in ubuntu kinetic.
No description available for apache2-
suexec- custom in ubuntu kinetic.
- apache2-suexec-custom-dbgsym: No summary available for apache2-suexec-custom-dbgsym in ubuntu kinetic.
No description available for apache2-
suexec- custom- dbgsym in ubuntu kinetic.
- apache2-suexec-pristine: No summary available for apache2-suexec-pristine in ubuntu kinetic.
No description available for apache2-
suexec- pristine in ubuntu kinetic.
- apache2-suexec-pristine-dbgsym: No summary available for apache2-suexec-pristine-dbgsym in ubuntu kinetic.
No description available for apache2-
suexec- pristine- dbgsym in ubuntu kinetic.
- apache2-utils: No summary available for apache2-utils in ubuntu kinetic.
No description available for apache2-utils in ubuntu kinetic.
- apache2-utils-dbgsym: No summary available for apache2-utils-dbgsym in ubuntu kinetic.
No description available for apache2-
utils-dbgsym in ubuntu kinetic.
- libapache2-mod-md: No summary available for libapache2-mod-md in ubuntu kinetic.
No description available for libapache2-mod-md in ubuntu kinetic.
- libapache2-mod-proxy-uwsgi: No summary available for libapache2-mod-proxy-uwsgi in ubuntu kinetic.
No description available for libapache2-
mod-proxy- uwsgi in ubuntu kinetic.
