[ubuntu/karmic] apache2 2.2.11-6ubuntu1 (Accepted)

Chuck Short zulcss at ubuntu.com
Tue Jun 9 13:25:15 BST 2009


apache2 (2.2.11-6ubuntu1) karmic; urgency=low

  * Merge from debian unstable, remaining changes:
    - debian/patches/203_fix-ssl-timeftm-ignored.dpatch:
      Fix timefmt is ignored when XBitHack is on. (LP: #258914)
    - debian/{control,rules}: enable PIE hardening.
    - debian/{control, rules, apache2.2-common.ufw.profile}: add ufw profiles.

apache2 (2.2.11-6) unstable; urgency=high

  * CVE-2009-1195: mod_include allowed to bypass IncludesNoExec for Server
    Side Includes (closes: #530834).
  * Fix postinst scripts (closes: #532278).

Date: Tue, 09 Jun 2009 01:01:23 +0100
Changed-By: Chuck Short <zulcss at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Chuck Short <chuck.short at canonical.com>
https://launchpad.net/ubuntu/karmic/+source/apache2/2.2.11-6ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Tue, 09 Jun 2009 01:01:23 +0100
Source: apache2
Binary: apache2.2-common apache2.2-bin apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-src apache2-dbg
Architecture: source
Version: 2.2.11-6ubuntu1
Distribution: karmic
Urgency: high
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Chuck Short <zulcss at ubuntu.com>
Description: 
 apache2    - Apache HTTP Server metapackage
 apache2-dbg - Apache debugging symbols
 apache2-doc - Apache HTTP Server documentation
 apache2-mpm-event - Apache HTTP Server - event driven model
 apache2-mpm-prefork - Apache HTTP Server - traditional non-threaded model
 apache2-mpm-worker - Apache HTTP Server - high speed threaded model
 apache2-prefork-dev - Apache development headers - non-threaded MPM
 apache2-src - Apache source code
 apache2-suexec - Standard suexec program for Apache 2 mod_suexec
 apache2-suexec-custom - Configurable suexec program for Apache 2 mod_suexec
 apache2-threaded-dev - Apache development headers - threaded MPM
 apache2-utils - utility programs for webservers
 apache2.2-bin - Apache HTTP Server common binary files
 apache2.2-common - Apache HTTP Server common files
Closes: 530834 532278
Launchpad-Bugs-Fixed: 258914
Changes: 
 apache2 (2.2.11-6ubuntu1) karmic; urgency=low
 .
   * Merge from debian unstable, remaining changes:
     - debian/patches/203_fix-ssl-timeftm-ignored.dpatch:
       Fix timefmt is ignored when XBitHack is on. (LP: #258914)
     - debian/{control,rules}: enable PIE hardening.
     - debian/{control, rules, apache2.2-common.ufw.profile}: add ufw profiles.
 .
 apache2 (2.2.11-6) unstable; urgency=high
 .
   * CVE-2009-1195: mod_include allowed to bypass IncludesNoExec for Server
     Side Includes (closes: #530834).
   * Fix postinst scripts (closes: #532278).
Checksums-Sha1: 
 7a8522b60abed80dbf9e31b9173ab5a483d23cb9 1809 apache2_2.2.11-6ubuntu1.dsc
 e0ede25ff73c2bb217d409355f015e01432b4c19 140324 apache2_2.2.11-6ubuntu1.diff.gz
Checksums-Sha256: 
 5955dd9c9571bc7c535a2cf5842719d0290282b077943681afd9a48dcf396fee 1809 apache2_2.2.11-6ubuntu1.dsc
 17ce8e0a7713fe1f79f6b6e15cb232f70ad045cb11df8fb37a997c2ad2507992 140324 apache2_2.2.11-6ubuntu1.diff.gz
Files: 
 13844d13890cb2010c56e5dce318ff39 1809 httpd optional apache2_2.2.11-6ubuntu1.dsc
 018338c3a48b07e1fd718e914927ba82 140324 httpd optional apache2_2.2.11-6ubuntu1.diff.gz
Original-Maintainer: Debian Apache Maintainers <debian-apache at lists.debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkouUhAACgkQIHZ33voUATvvGQCguHy9ZLNCdhjjFDrPqeP1YJFb
rWcAn1kxZcH9PeDSRMLYEdAZeICbQKwB
=YMBn
-----END PGP SIGNATURE-----


More information about the Karmic-changes mailing list