Accepted apache2 2.0.54-5ubuntu1 (source)
Adam Conrad
adconrad at ubuntu.com
Mon Sep 5 06:10:03 CDT 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 5 Sep 2005 20:40:31 +1000
Source: apache2
Binary: apache2-utils apache2 apache2-prefork-dev apache2-mpm-prefork apache2-doc libapr0-dev apache2-mpm-threadpool apache2-mpm-worker libapr0 apache2-threaded-dev apache2-common apache2-mpm-perchild
Architecture: source
Version: 2.0.54-5ubuntu1
Distribution: breezy
Urgency: high
Maintainer: Debian Apache Maintainers <debian-apache at lists.debian.org>
Changed-By: Adam Conrad <adconrad at ubuntu.com>
Description:
apache2 - next generation, scalable, extendable web server
apache2-common - next generation, scalable, extendable web server
apache2-doc - documentation for apache2
apache2-mpm-perchild - experimental high speed perchild threaded model for Apache2
apache2-mpm-prefork - traditional model for Apache2
apache2-mpm-threadpool - experimental high speed model for Apache2 (transitional package)
apache2-mpm-worker - high speed threaded model for Apache2
apache2-prefork-dev - development headers for apache2
apache2-threaded-dev - development headers for apache2
apache2-utils - utility programs for webservers
libapr0 - the Apache Portable Runtime
libapr0-dev - development headers for libapr
Closes: 316173 320048 320063 326435
Changes:
apache2 (2.0.54-5ubuntu1) breezy; urgency=low
.
* Resynchronise with Debian, bringing in several security patches.
.
apache2 (2.0.54-5) stable-security; urgency=high
.
* Add 043_ssl_off_by_one_CAN-2005-1268, fixing an off-by-one error in SSL
certificate validation; see CAN-2005-1268 (closes: #320048, #320063)
* Add 044_content_length_CAN-2005-2088, resolving an issue in mod_proxy
where, when a response contains both Transfer-Encoding and Content-Length
headers, the connection can be used for HTTP request smuggling and HTTP
request spoofing attacks; see CAN-2005-2088 (closes: #316173)
* Add 045_byterange_CAN-2005-2728, to resolve a denial of service in apache
when large byte ranges are requested; see CAN-2005-2728 (closes: #326435)
* Add 046_verify_client_CAN-2005-2700, resolving an issue where the context
of the SSLVerifyClient directive is not honoured within a <Location>
nested in a <VirtualHost>, and is left unenforced; see CAN-2005-2700
Files:
7866083889ea74de94cedb55a92e2c1e 1155 net optional apache2_2.0.54-5ubuntu1.dsc
cb53f318a0115e90f6a6121477de1cd0 111144 net optional apache2_2.0.54-5ubuntu1.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
iD8DBQFDHCZFvjztR8bOoMkRAlNbAKCbQAmb5NX1dZHDUxCtxtcIHVV8KgCgwvpH
zYOq80pXNZPbxi47Ccr6zhE=
=xbXE
-----END PGP SIGNATURE-----
Accepted:
apache2_2.0.54-5ubuntu1.diff.gz
to pool/main/a/apache2/apache2_2.0.54-5ubuntu1.diff.gz
apache2_2.0.54-5ubuntu1.dsc
to pool/main/a/apache2/apache2_2.0.54-5ubuntu1.dsc
More information about the breezy-changes
mailing list