Ubuntu

Change log for “apr” package in Ubuntu

148 of 48 results
Published in trusty-release on 2013-12-31
Deleted in trusty-proposed (Reason: moved to release)
apr (1.5.0-1) unstable; urgency=low


  * New upstream version
  * Pull changes from upstream 1.5.x branch up to r1552863 to fix problems
    on the FreeBSD 10 kernel with accept4() and non-blocking sockets.

 -- Stefan Fritsch <email address hidden>  Mon, 30 Dec 2013 16:37:54 +0100

Available diffs

Superseded in trusty-release on 2013-12-31
Deleted in trusty-proposed on 2014-01-01 (Reason: moved to release)
apr (1.4.8-3) unstable; urgency=low


  * Re-add the logic to force use of bash for configure/libtool. Otherwise,
    if the package is build with /bin/sh -> /bin/bash, the shipped libtool
    won't work on systems with /bin/sh -> /bin/dash. This got lost in
    1.4.8-2. Closes: #730196

 -- Stefan Fritsch <email address hidden>  Sat, 23 Nov 2013 00:57:30 +0100

Available diffs

Superseded in trusty-release on 2013-11-23
Deleted in trusty-proposed on 2013-11-24 (Reason: moved to release)
apr (1.4.8-2) unstable; urgency=low


  * Merge some changes from Ubuntu's 1.4.8-1ubuntu1:
    - Fix the confusion between HOST and BUILD variables in rules.
    - Add a set of autoconf preseeds that are only used when cross-building.
  * Change cross-building preseeds to only apply on linux.
  * Cherry-pick fix for O_NONBLOCK configure check from upstream 1.4.x
    branch.
  * Switch build system to dh
    - No longer hard-codes -fstack-protector on unsupported platforms.
      Closes: #717231
    - Bump Standards-Version (no additional changes).
  * Support multi-arch.
  * Enable sctp support on Linux.
  * Change apr_rules.mk to not force CFLAGS, etc. to the values used during
    apr's compilation.
  * Fix accept4() configure test to work on Hurd. Closes: #715028

 -- Stefan Fritsch <email address hidden>  Wed, 06 Nov 2013 19:37:05 +0100
Superseded in trusty-release on 2013-11-07
Published in saucy-release on 2013-07-11
Deleted in saucy-proposed (Reason: moved to release)
apr (1.4.8-1ubuntu1) saucy; urgency=low

  * Merge with Debian; remaining changes:
    - Fix the confusion between HOST and BUILD variables in rules.
    - Fix a thinko using shell-style subshells instead of make-style.
    - Add a set of autoconf preseeds that are only used when cross-building.

Available diffs

Superseded in saucy-release on 2013-07-11
Published in raring-release on 2012-12-05
Deleted in raring-proposed (Reason: moved to release)
apr (1.4.6-3ubuntu1) raring; urgency=low

  * Make APR more cross-build friendly by fixing/mangling a few things:
    - Fix the confusion between HOST and BUILD variables in rules.
    - Fix a thinko using shell-style subshells instead of make-style.
    - Don't try to run native ino_t_test.c when cross-compiling.
    - Add a set of autoconf preseeds that are only used when crossing.
 -- Adam Conrad <email address hidden>   Wed, 05 Dec 2012 06:49:57 -0700
Superseded in raring-release on 2012-12-05
Published in quantal-release on 2012-05-29
apr (1.4.6-3) unstable; urgency=low


  * Fix some issues with resolving loopback addresses of a protocol family
    that is not otherwise configured on a host. Many thanks to Jean-Michel
    Vourgère and Aurelien Jarno for debugging this.
    Closes: #500558, #629899 LP: #397393
  * Pull updates from upstream branch 1.4.x up to r1343251
  * Add some debug output in order to debug test failures on kfreebsd-i386.

 -- Stefan Fritsch <email address hidden>  Mon, 28 May 2012 16:02:12 +0200

Available diffs

Superseded in quantal-release on 2012-05-29
apr (1.4.6-2) unstable; urgency=low


  * Enable use of some new APIs. The minimal required linux kernel version is
    now 2.6.28.
  * Improvements for Hurd (closes: #656880):
    - Re-enable test suite
    - Update build hints, disable non-working shm and flock methods. Thanks to
      Pino Toscano for the patches.
  * Switch VCS to git.
  * Switch to source format 3.0, debhelper 9. Thanks to Jari Aalto for the
    patch. Closes: #664299
  * Remove sendfile LFS patch that was only necessary for 2.4 kernels.
  * Fix some lintian warnings (dh_prep, build-indep/build-arch targets).
  * Bump Standards-Version (no changes).

 -- Stefan Fritsch <email address hidden>  Sun, 20 May 2012 21:39:17 +0200

Available diffs

Superseded in quantal-release on 2012-05-24
Published in precise-release on 2012-03-20
apr (1.4.6-1) unstable; urgency=low


  * New upstream release:
    - Fixes apr_file_trunc() bug which could lead to subversion repository
      corruption. Closes: #664451
    - Adds randomization to hashes. CVE-2012-0840 (but not known to be
      exploitable in httpd or svn). Closes: #655435
  * Remove Tollef Fog Heen and Ryan Niebur from uploaders. Thanks for your
    work in the past.

 -- Stefan Fritsch <email address hidden>  Sun, 18 Mar 2012 23:22:59 +0100
Superseded in precise-release on 2012-03-20
apr (1.4.5-1.1ubuntu2) precise; urgency=low

  * Revert the previous upload; apr_cv_mutex_robust_shared still
    hangs on our current buildd setup; need to revisit later.
 -- Adam Conrad <email address hidden>   Fri, 24 Feb 2012 04:51:20 -0700
Superseded in precise-release on 2012-02-24
apr (1.4.5-1.1ubuntu1) precise; urgency=low

  * debian/rules: Re-enable apr_cv_mutex_robust_shared support on
    armel and armhf. If the kernels on the builders are recent enough
    this closes: #604753 again.
 -- Jani Monoses <email address hidden>   Thu, 23 Feb 2012 23:29:01 +0200

Available diffs

Superseded in precise-release on 2012-02-24
apr (1.4.5-1.1) unstable; urgency=low

  * Non-maintainer upload.
  * Disable robust pthread mutexes on armhf causes testprocmutex to hang on
    non-SMP cores. (Closes: #650350)
 -- Matthias Klose <email address hidden>   Wed,  14 Dec 2011 11:50:44 +0000

Available diffs

Superseded in precise-release on 2011-12-14
apr (1.4.5-1ubuntu1) precise; urgency=low

  * Disable the tests on armhf for a first build. LP: #900510.
 -- Matthias Klose <email address hidden>   Mon, 05 Dec 2011 23:10:52 +0100

Available diffs

Published in lucid-updates on 2011-05-24
Published in lucid-security on 2011-05-24
apr (1.3.8-1ubuntu0.3) lucid-security; urgency=low

  * SECURITY UPDATE: denial of service in apr_fnmatch exploitable via
    apache's mod_index
    - debian/patches/028_fnmatch_CVE-2011-0419.dpatch: rewrite
      apr_fnmatch to have a better time bounds on execution.
    - CVE-2011-0419
    - debian/patches/029_fnmatch_CVE-2011-1928.dpatch: fix possible
      DoS introduced by patch for CVE-2011-0419.
    - CVE-2011-1928
  * debian/patches/030_thumb2.dpatch; backport disabling process shared
    mutexes on arm to fix build hang (LP: #599874)
 -- Steve Beattie <email address hidden>   Mon, 23 May 2011 12:20:09 -0700
Published in hardy-updates on 2011-05-24
Published in hardy-security on 2011-05-24
apr (1.2.11-1ubuntu0.2) hardy-security; urgency=low

  * SECURITY UPDATE: denial of service in apr_fnmatch exploitable via
    apache's mod_index
    - debian/patches/025_fnmatch_CVE-2011-0419.dpatch: rewrite
      apr_fnmatch to have a better time bounds on execution.
    - CVE-2011-0419
    - debian/patches/026_fnmatch_CVE-2011-1928.dpatch: fix possible
      DoS introduced by patch for CVE-2011-0419.
    - CVE-2011-1928
 -- Steve Beattie <email address hidden>   Fri, 20 May 2011 23:07:29 -0700
Obsolete in maverick-updates on 2013-03-05
Obsolete in maverick-security on 2013-03-05
apr (1.4.2-3ubuntu1.1) maverick-security; urgency=low

  * SECURITY UPDATE: denial of service in apr_fnmatch exploitable via
    apache's mod_index
    - debian/patches/031_fnmatch_CVE-2011-0419.dpatch: rewrite
      apr_fnmatch to have a better time bounds on execution.
    - CVE-2011-0419
    - debian/patches/032_fnmatch_CVE-2011-1928.dpatch: fix possible
      DoS introduced by patch for CVE-2011-0419.
    - CVE-2011-1928
 -- Steve Beattie <email address hidden>   Fri, 20 May 2011 14:05:32 -0700
Superseded in precise-release on 2011-12-05
Published in oneiric-release on 2011-05-22
apr (1.4.5-1) unstable; urgency=high

  * New upstream version:
    - Fix regression introduced by fix for CVE-2011-0419: apr_fnmatch may
      consume 100% CPU. CVE-2011-1928. Closes: #627182
  * Fix allocator using mmap crashing on non-4k-page platforms. Thanks to
    Lifeng Sun for the patch. Closes: #627532 
 -- Ubuntu Archive Auto-Sync <email address hidden>   Sun,  22 May 2011 13:54:14 +0000

Available diffs

Obsolete in natty-updates on 2013-06-04
Obsolete in natty-security on 2013-06-04
apr (1.4.2-7ubuntu2.1) natty-security; urgency=low

  * SECURITY UPDATE: denial of service in apr_fnmatch exploitable via
    apache's mod_index
    - debian/patches/029_fnmatch_CVE-2011-0419.dpatch: rewrite
      apr_fnmatch to have a better time bounds on execution.
    - CVE-2011-0419
    - debian/patches/030_fnmatch_CVE-2011-1928.dpatch: fix possible
      DoS introduced by patch for CVE-2011-0419.
    - CVE-2011-1928
 -- Steve Beattie <email address hidden>   Thu, 19 May 2011 17:28:01 -0700
Superseded in oneiric-release on 2011-05-22
apr (1.4.4-1) unstable; urgency=low

  * New upstream release.
    - Fix potential DoS in apr_fnmatch (CVE-2011-0419)
  * Enable experimental allocator using mmap instead of malloc. This makes
    Apache HTTPD's MaxMemFree directive actually work and hopefully reduces
    memory fragmentation.
  * Bump standards-version (no changes).
  * Reword some short descriptions to make lintian happy.

Available diffs

Superseded in oneiric-release on 2011-05-17
Obsolete in natty-release on 2013-06-04
apr (1.4.2-7ubuntu2) natty; urgency=low

  * Revert previous change. I forgot the build servers have an older
    kernel on which the testsuite fails to pass. Reopens LP: #604753
 -- Jani Monoses <email address hidden>   Mon, 21 Mar 2011 10:14:43 +0200

Available diffs

Superseded in natty-release on 2011-03-21
apr (1.4.2-7ubuntu1) natty; urgency=low

  * debian/rules: Reenable robust pthread mutexes on armel, now that eglibc
    process shared mutexes were fixed to use gcc atomic sync builtins.
    (LP: #604753)
 -- Jani Monoses <email address hidden>   Fri, 18 Mar 2011 18:37:44 +0200

Available diffs

Superseded in natty-release on 2011-03-18
apr (1.4.2-7) unstable; urgency=low

  * Add a workaround for a problem related to strict aliasing that causes
    gcc 4.5 to create incorrect code in some cases. Closes: #609163
    LP: #697105
  * Bump standards version to 3.9.1:
    - empty dependency_libs section in libapr-1.la
 -- Chuck Short <email address hidden>   Tue,  15 Feb 2011 19:26:00 +0000

Available diffs

Superseded in natty-release on 2011-02-15
apr (1.4.2-6) unstable; urgency=low

  * Also disable robust pthread mutexes on alpha, to fix hang in the test
    suite on Linux 2.6.32.

Available diffs

Superseded in natty-release on 2010-11-22
Obsolete in maverick-release on 2013-03-05
apr (1.4.2-3ubuntu1) maverick; urgency=low

  * Check for arm thumb mode to disable process shared mutexes. (LP: #599874)
 -- David Sugar <email address hidden>   Tue, 17 Aug 2010 02:45:58 +0200

Available diffs

Superseded in maverick-release on 2010-08-17
apr (1.4.2-3build1) maverick; urgency=low

  * Simple rebuild to pick new i386 GNU triplet (i486 -> i686).
 -- Loic Minier <email address hidden>   Sun, 06 Jun 2010 16:24:27 +0200

Available diffs

Superseded in maverick-release on 2010-06-06
apr (1.4.2-3) unstable; urgency=low

  * Upload to unstable.

Available diffs

Superseded in maverick-release on 2010-05-09
Published in lucid-release on 2010-02-12
apr (1.3.8-1build1) lucid; urgency=low

  * No change rebuild to get rid of reference to libuuid.la in libapr-1.la
    (causes a bunch of FTBFS).
 -- Loic Minier <email address hidden>   Fri, 12 Feb 2010 13:55:23 +0100

Available diffs

Superseded in lucid-release on 2010-02-12
Obsolete in karmic-release on 2013-03-04
apr (1.3.8-1) unstable; urgency=high

  [ Stefan Fritsch ]
  * Enable -fstack-protector for arm/armel. A workaround has been added to
    gcc.

  [ Peter Samuelson ]
  * New upstream security release.
    - Fix CVE-2009-2412, overflow in pool allocations, where size
      alignment was taking place.

Available diffs

Superseded in hardy-updates on 2011-05-24
Superseded in hardy-security on 2011-05-24
apr (1.2.11-1ubuntu0.1) hardy-security; urgency=low

  * SECURITY UPDATE: fix integer overflow in libapr
    - debian/patches/024_CVE-2009-2412.dpatch: adjust allocator_alloc() and
      apr_palloc() in apr_pools.c to check for overflow after aligning size
    - http://www.apache.org/dist/apr/patches/apr-1.x-CVE-2009-2412.patch
    - CVE-2009-2412

 -- Jamie Strandboge <email address hidden>   Fri, 07 Aug 2009 12:09:11 -0500
Obsolete in intrepid-updates on 2013-02-20
Obsolete in intrepid-security on 2013-02-20
apr (1.2.12-4ubuntu0.1) intrepid-security; urgency=low

  * SECURITY UPDATE: fix integer overflow in libapr
    - debian/patches/025_CVE-2009-2412.dpatch: adjust allocator_alloc() and
      apr_palloc() in apr_pools.c to check for overflow after aligning size
    - http://www.apache.org/dist/apr/patches/apr-1.x-CVE-2009-2412.patch
    - CVE-2009-2412

 -- Jamie Strandboge <email address hidden>   Fri, 07 Aug 2009 12:12:47 -0500
Obsolete in jaunty-updates on 2013-02-28
Obsolete in jaunty-security on 2013-02-28
apr (1.2.12-5ubuntu0.1) jaunty-security; urgency=low

  * SECURITY UPDATE: fix integer overflow in libapr
    - debian/patches/024_CVE-2009-2412.dpatch: adjust allocator_alloc() and
      apr_palloc() in apr_pools.c to check for overflow after aligning size
    - http://www.apache.org/dist/apr/patches/apr-1.x-CVE-2009-2412.patch
    - CVE-2009-2412

 -- Jamie Strandboge <email address hidden>   Fri, 07 Aug 2009 12:22:11 -0500
Superseded in karmic-release on 2009-08-15
apr (1.3.5-2) unstable; urgency=low

  * Mark non-inheritable file descriptors with FD_CLOEXEC, to prevent leaking
    them to processes exec'ed by applications that fail to use the apr API
    correctly (i.e. mod_php). Closes: #366124
  * Bump standards-version (no changes).
  * Override soname lintian warning (too late to change that).

 -- Ubuntu Archive Auto-Sync <email address hidden>   Thu,  25 Jun 2009 07:43:35 +0100

Available diffs

Superseded in karmic-release on 2009-06-25
apr (1.3.5-1) unstable; urgency=low

  * New upstream version (really)

 -- Ubuntu Archive Auto-Sync <email address hidden>   Fri,  12 Jun 2009 13:17:49 +0100

Available diffs

Superseded in karmic-release on 2009-06-12
apr (1.3.4-1) unstable; urgency=low

  * New upstream version
  * Fix FTBFS on hurd (thanks to Marc Dequènes, closes: #530286)
    - define _GNU_SOURCE earlier
    - disable tests on hurd for now
    - Deactivate missing multicast support on Hurd (by removing
      HAVE_STRUCT_IPMREQ manually). 
  * Omit spurious libs from apr-1-config --libs output (closes: #463399)

 -- Ubuntu Archive Auto-Sync <email address hidden>   Mon,  08 Jun 2009 10:59:22 +0100

Available diffs

Superseded in karmic-release on 2009-06-08
apr (1.3.3-4) unstable; urgency=low

  [ Ryan Niebur ]
  * change the -dbg package's section to debug
  * Fix building with newer libtool, thanks to John Wright for the patch
    (Closes: #526346)
  * use a symbols file without apr_socket_sendfile on kfreebsd based
    architectures, fixing FTBFS (Closes: #520857)
  * support nocheck in DEB_BUILD_OPTIONS
  * Debian Policy 3.8.1

  [ Stefan Fritsch ]
  * Force use of bash in the embedded libtool

 -- Bhavani Shankar <email address hidden>   Mon,  18 May 2009 11:46:51 +0100

Available diffs

Superseded in karmic-release on 2009-05-18
apr (1.3.3-3ubuntu1) karmic; urgency=low

  * debian/patches/025_force_buildconf_to_call_autoreconf.dpatch
    - As part of APR's build process, it calls autoconf automatically. This
      patch forces that call to autoreconf, which forces macros to be updated
      and updates libtool properly, resolving an FTBFS on karmic. (LP: #372068)
  * debian/control:
    - Added automake to the build-deps for aclocal

 -- Michael Casadevall <email address hidden>   Tue, 05 May 2009 03:42:41 -0400

Available diffs

Superseded in karmic-release on 2009-05-05
apr (1.3.3-3) unstable; urgency=low

  * Reduce stack size for the 'testatomic' test since it may otherwise run out
    of virtual memory on some buildds. This sometimes caused FTBFS on hppa.

Available diffs

Superseded in karmic-release on 2009-04-28
Obsolete in jaunty-release on 2013-02-28
apr (1.2.12-5) unstable; urgency=low

  * Actually switch to /dev/urandom instead of only adding a non-functional
    patch. Closes: #501497

 -- Ubuntu Archive Auto-Sync <email address hidden>   Tue,  04 Nov 2008 21:12:03 +0000

Available diffs

Superseded in jaunty-release on 2008-11-05
Obsolete in intrepid-release on 2013-02-20
apr (1.2.12-4) unstable; urgency=medium

  * Use /dev/urandom instead of /dev/random (like 1.3.* does).
  * Update watch file to recognize 1.3.*.

 -- Ubuntu Archive Auto-Sync <email address hidden>   Thu,  19 Jun 2008 13:22:51 +0100

Available diffs

Superseded in intrepid-release on 2008-06-19
apr (1.2.12-3) unstable; urgency=low

  * Enable hardening options in a way that does not include them in
    apr-config, which was a bad idea.
  * Point to /usr/share/common-licenses instead of including the license in the
    copyright file.

 -- Ubuntu Archive Auto-Sync <email address hidden>   Thu,  12 Jun 2008 13:38:01 +0100

Available diffs

Superseded in intrepid-release on 2008-06-12
apr (1.2.12-2) unstable; urgency=high

  * Urgency high for RC bug fix.
  * Do not use -fstack-protector on arm and armel, since it is completely
    broken (see #469517). Closes: #477772
  * Remove unneded libtool build dependency.

Superseded in intrepid-release on 2008-05-03
Published in hardy-release on 2007-11-23
apr (1.2.11-1) unstable; urgency=low

  * New upstream version (Closes: #441969)
  * Enable epoll (Closes: #441635). This means we don't support Linux 2.4
    kernels anymore. Therefore we can also enable tcp_nodelay_with_cork.
  * Fix generation of docs (Closes: #413684, #442794)
  * Don't ship LaTeX source files in .deb
  * Build with -D_REENTRANT on kfreebsd (Closes: #301417)
  * Fix FTBFS on hurd because of missing PATH_MAX (Closes: #349418)
  * Do not build everything twice by using the correct path to config.status
    in debian/rules
  * Add myself to Uploaders
  * Add svn repository information to debian/control

Superseded in hardy-release on 2007-11-23
Obsolete in gutsy-release on 2011-09-16
apr (1.2.7-8.2ubuntu1) gutsy; urgency=low

  * No-change upload to build against fixed libtool on lpia.

 -- Adam Conrad <email address hidden>   Wed,  1 Aug 2007 16:13:20 +1000
Superseded in gutsy-release on 2007-08-01
apr (1.2.7-8.2) unstable; urgency=high

  * Non-maintainer upload.
  * Apply better working 015_sendfile_lfs.dpatch this time.
    Again Closes: #396631

 -- Ubuntu Archive Auto-Sync <email address hidden>   Thu,  26 Apr 2007 23:28:24 +0100
Superseded in gutsy-release on 2007-04-27
Obsolete in feisty-release on 2009-08-20
Superseded in feisty-release on 2006-12-19
apr (1.2.7-8.1) unstable; urgency=high

  * Non-maintainer upload.
  * Fix 0-lenght files. Take 015_sendfile_lfs.dpatch from svn for this.
    Closes: #396631

 -- Ubuntu Archive Auto-Sync <email address hidden>   Tue,  12 Dec 2006 10:52:28 +0000
Superseded in feisty-release on 2006-12-12
apr (1.2.7-8) unstable; urgency=low

  [ Peter Samuelson ]
  * Small kludge^Wtweak to apr_file_info.h to make the ABI stable across
    LFS/non-LFS preprocessor flags.  (See: #397402)

 -- Ubuntu Archive Auto-Sync <email address hidden>   Thu,  16 Nov 2006 17:01:17 +0000
Superseded in feisty-release on 2006-11-16
apr (1.2.7-7) unstable; urgency=low

  * Update rules to ensure we don't turn on features that aren't available on
    2.4 kernels for !amd64 kernels.  Closes: #392049

 -- Ubuntu Archive Auto-Sync <email address hidden>   Wed,  08 Nov 2006 17:11:31 +0000
Superseded in feisty-release on 2006-11-08
apr (1.2.7-6) unstable; urgency=low

  * Update 011_fix_apr-config to give out the libtool used to build apr
    with.  Fixes Apache 2.2 FTBFS when we remove all the evil libtool
    hacks there too.
  * Make -dbg package Priority: extra as per overrides.

Superseded in feisty-release on 2006-11-08
Obsolete in edgy-release on 2008-06-19
apr (1.2.7-3) unstable; urgency=low

  * Fix override disparity
  * Backport of patch to work around kernel problems with sendfile on 64bit
    platforms
  * Update config.{guess,sub} to make libtool happier.  This fixes the
    problem reported in #369881.  Closes: #369881.
  * Remove some of the libtool hacks since they're no longer needed with
    the newer config.{guess,sub}

148 of 48 results