[ubuntu/lucid-security] apache2 2.2.14-5ubuntu8.12 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Mon Jul 15 12:43:23 UTC 2013
apache2 (2.2.14-5ubuntu8.12) lucid-security; urgency=low
* SECURITY UPDATE: log file poisoning via mod_rewrite (LP: #1188069)
- debian/patches/CVE-2013-1862.dpatch: properly escape items in
modules/mappers/mod_rewrite.c.
- CVE-2013-1862
* SECURITY UPDATE: denial of service via MERGE request
- debian/patches/CVE-2013-1896.dpatch: make sure DAV is enabled for URI
in modules/dav/main/mod_dav.c.
- CVE-2013-1896
Date: 2013-07-12 13:35:14.350437+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/lucid/+source/apache2/2.2.14-5ubuntu8.12
-------------- next part --------------
Sorry, changesfile not available.
More information about the Lucid-changes
mailing list