[ubuntu/dapper-security] apache2 (delayed), apache2 2.0.55-4ubuntu2.10 (Accepted)

Ubuntu Installer archive at ubuntu.com
Wed Mar 10 19:04:25 GMT 2010


apache2 (2.0.55-4ubuntu2.10) dapper-security; urgency=low

  * SECURITY UPDATE: information disclosure via improper handling of
    headers in subrequests
    - debian/patches/118_CVE-2010-0434.dpatch: use a copy of r->headers_in
      in server/protocol.c.
    - CVE-2010-0434

Date: Mon, 08 Mar 2010 14:33:49 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Debian Apache Maintainers <debian-apache at lists.debian.org>
https://launchpad.net/ubuntu/dapper/+source/apache2/2.0.55-4ubuntu2.10
-------------- next part --------------
Format: 1.7
Date: Mon, 08 Mar 2010 14:33:49 -0500
Source: apache2
Binary: apache2-utils apache2 apache2-prefork-dev apache2-mpm-prefork apache2-doc libapr0-dev apache2-mpm-worker libapr0 apache2-threaded-dev apache2-common apache2-mpm-perchild
Architecture: source
Version: 2.0.55-4ubuntu2.10
Distribution: dapper-security
Urgency: low
Maintainer: Debian Apache Maintainers <debian-apache at lists.debian.org>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 apache2    - next generation, scalable, extendable web server
 apache2-common - next generation, scalable, extendable web server
 apache2-doc - documentation for apache2
 apache2-mpm-perchild - experimental high speed perchild threaded model for Apache2
 apache2-mpm-prefork - traditional model for Apache2
 apache2-mpm-worker - high speed threaded model for Apache2
 apache2-prefork-dev - development headers for apache2
 apache2-threaded-dev - development headers for apache2
 apache2-utils - utility programs for webservers
 libapr0    - the Apache Portable Runtime
 libapr0-dev - development headers for libapr
Changes: 
 apache2 (2.0.55-4ubuntu2.10) dapper-security; urgency=low
 .
   * SECURITY UPDATE: information disclosure via improper handling of
     headers in subrequests
     - debian/patches/118_CVE-2010-0434.dpatch: use a copy of r->headers_in
       in server/protocol.c.
     - CVE-2010-0434
Files: 
 89f54b0237d3770822f4dcfa62bfa873 1159 net optional apache2_2.0.55-4ubuntu2.10.dsc
 426096b5df2f66afdc5238e1a36ad7ae 132089 net optional apache2_2.0.55-4ubuntu2.10.diff.gz


More information about the dapper-changes mailing list