-
apr (1.2.12-5ubuntu0.1) jaunty-security; urgency=low
* SECURITY UPDATE: fix integer overflow in libapr
- debian/patches/024_CVE-2009-2412.dpatch: adjust allocator_alloc() and
apr_palloc() in apr_pools.c to check for overflow after aligning size
- http://www.apache.org/dist/apr/patches/apr-1.x-CVE-2009-2412.patch
- CVE-2009-2412
-- Jamie Strandboge <email address hidden> Fri, 07 Aug 2009 12:22:11 -0500
-
apr (1.2.12-5) unstable; urgency=low
* Actually switch to /dev/urandom instead of only adding a non-functional
patch. Closes: #501497
-- Ubuntu Archive Auto-Sync <email address hidden> Tue, 04 Nov 2008 21:12:03 +0000
-
apr (1.2.12-4) unstable; urgency=medium
* Use /dev/urandom instead of /dev/random (like 1.3.* does).
* Update watch file to recognize 1.3.*.
-- Ubuntu Archive Auto-Sync <email address hidden> Thu, 19 Jun 2008 13:22:51 +0100
