[ubuntu/impish-proposed] libapache2-mod-auth-mellon 0.17.0-1ubuntu1 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Wed Aug 4 17:18:11 UTC 2021
libapache2-mod-auth-mellon (0.17.0-1ubuntu1) impish; urgency=medium
* SECURITY UPDATE: open redirect vulnerability
- debian/patches/CVE-2021-3639.patch: prevent redirect to URLs that
begin with /// in auth_mellon_util.c.
- CVE-2021-3639
Date: Wed, 04 Aug 2021 10:12:11 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/libapache2-mod-auth-mellon/0.17.0-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Wed, 04 Aug 2021 10:12:11 -0400
Source: libapache2-mod-auth-mellon
Built-For-Profiles: noudeb
Architecture: source
Version: 0.17.0-1ubuntu1
Distribution: impish
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
libapache2-mod-auth-mellon (0.17.0-1ubuntu1) impish; urgency=medium
.
* SECURITY UPDATE: open redirect vulnerability
- debian/patches/CVE-2021-3639.patch: prevent redirect to URLs that
begin with /// in auth_mellon_util.c.
- CVE-2021-3639
Checksums-Sha1:
c0a36a56a14c671cb592121a8699a869ca1f9446 2168 libapache2-mod-auth-mellon_0.17.0-1ubuntu1.dsc
f5a697a5af2fb1a6ab4bb1e3762065520c544217 4572 libapache2-mod-auth-mellon_0.17.0-1ubuntu1.debian.tar.xz
c3997cd49dfd6c3ff79132340473d4b1dfaf9dd3 9545 libapache2-mod-auth-mellon_0.17.0-1ubuntu1_source.buildinfo
Checksums-Sha256:
414fa38984041135d7f2f438c48559346e8802069a4565e6387c9c44e40c7663 2168 libapache2-mod-auth-mellon_0.17.0-1ubuntu1.dsc
ea9120abfc8299c6fbc00363dd4ec56c4a94b122f902407851b3dec7ae5f46f3 4572 libapache2-mod-auth-mellon_0.17.0-1ubuntu1.debian.tar.xz
84d9e6fe9d75c1879831161c5db2ec3f7d42d29c98c8d51209a64c990d1107b3 9545 libapache2-mod-auth-mellon_0.17.0-1ubuntu1_source.buildinfo
Files:
1861678b3294498232a485798f8b98bb 2168 httpd optional libapache2-mod-auth-mellon_0.17.0-1ubuntu1.dsc
cbb1a05283d5464cc7fa8cecc799b676 4572 httpd optional libapache2-mod-auth-mellon_0.17.0-1ubuntu1.debian.tar.xz
ff2539c4f506748677d3f6396c8f7df7 9545 httpd optional libapache2-mod-auth-mellon_0.17.0-1ubuntu1_source.buildinfo
Original-Maintainer: Thijs Kinkhorst <thijs at debian.org>
More information about the impish-changes
mailing list