[ubuntu/maverick] apache2 2.2.16-1ubuntu1 (Accepted)

Chuck Short zulcss at ubuntu.com
Tue Jul 27 16:00:33 BST 2010


apache2 (2.2.16-1ubuntu1) maverick; urgency=low

  * Merge from debian unstable.  Remaining changes:
    - debian/{control, rules}: Enable PIE hardening.
    - debian/{control, rules, apache2.2-common.ufw.profile}: Add ufw profiles.
    - debian/control: Add bzr tag and point it to our tree.
    - debian/apache2-2.common.apache2.init: Add graceful restart (LP: #456381)

apache2 (2.2.16-1) unstable; urgency=medium

  * Urgency medium for security fix.
  * New upstream release:
    - CVE-2010-1452: mod_dav, mod_cache: Fix denial of service vulnerability
      due to incorrect handling of requests without a path segment.
    - mod_dir: add FallbackResource directive, to enable admin to specify
      an action to happen when a URL maps to no file, without resorting
      to ErrorDocument or mod_rewrite
  * Fix mod_ssl header line corruption because of using memcpy for overlapping
    buffers. PR 45444. LP: #609290, #589611, #595116

apache2 (2.2.15-6) unstable; urgency=low

  * Fix init script not correctly killing htcacheclean. Closes: #580971
  * Add a separate entry in README.Debian about the need to use apache2ctl
    for starting instead of calling apache2 directly. Closes: #580445
  * Fix debug info to allow gdb loading it automatically. Closes: #581514
  * Fix install target in Makefile created by apxs2 -n. Closes: #588787
  * Fix ab sending more requests than specified by the -n parameter.
    Closes: #541158
  * Add apache2 monit configuration to apache2.2-commons examples dir.
    Closes: #583127
  * Build as PIE, since gdb in squeeze now supports it.
  * Update the postrm script to also purge the version of /var/www/index.html
    introduced in 2.2.11-7.
  * Bump Standards-Version (no changes).

Date: Mon, 26 Jul 2010 20:21:37 +0100
Changed-By: Chuck Short <zulcss at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Chuck Short <chuck.short at canonical.com>
https://launchpad.net/ubuntu/maverick/+source/apache2/2.2.16-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Mon, 26 Jul 2010 20:21:37 +0100
Source: apache2
Binary: apache2.2-common apache2.2-bin apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-mpm-itk apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-dbg
Architecture: source
Version: 2.2.16-1ubuntu1
Distribution: maverick
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Chuck Short <zulcss at ubuntu.com>
Description: 
 apache2    - Apache HTTP Server metapackage
 apache2-dbg - Apache debugging symbols
 apache2-doc - Apache HTTP Server documentation
 apache2-mpm-event - Apache HTTP Server - event driven model
 apache2-mpm-itk - multiuser MPM for Apache 2.2
 apache2-mpm-prefork - Apache HTTP Server - traditional non-threaded model
 apache2-mpm-worker - Apache HTTP Server - high speed threaded model
 apache2-prefork-dev - Apache development headers - non-threaded MPM
 apache2-suexec - Standard suexec program for Apache 2 mod_suexec
 apache2-suexec-custom - Configurable suexec program for Apache 2 mod_suexec
 apache2-threaded-dev - Apache development headers - threaded MPM
 apache2-utils - utility programs for webservers
 apache2.2-bin - Apache HTTP Server common binary files
 apache2.2-common - Apache HTTP Server common files
Closes: 541158 580445 580971 581514 583127 588787
Launchpad-Bugs-Fixed: 456381 589611 595116 609290
Changes: 
 apache2 (2.2.16-1ubuntu1) maverick; urgency=low
 .
   * Merge from debian unstable.  Remaining changes:
     - debian/{control, rules}: Enable PIE hardening.
     - debian/{control, rules, apache2.2-common.ufw.profile}: Add ufw profiles.
     - debian/control: Add bzr tag and point it to our tree.
     - debian/apache2-2.common.apache2.init: Add graceful restart (LP: #456381)
 .
 apache2 (2.2.16-1) unstable; urgency=medium
 .
   * Urgency medium for security fix.
   * New upstream release:
     - CVE-2010-1452: mod_dav, mod_cache: Fix denial of service vulnerability
       due to incorrect handling of requests without a path segment.
     - mod_dir: add FallbackResource directive, to enable admin to specify
       an action to happen when a URL maps to no file, without resorting
       to ErrorDocument or mod_rewrite
   * Fix mod_ssl header line corruption because of using memcpy for overlapping
     buffers. PR 45444. LP: #609290, #589611, #595116
 .
 apache2 (2.2.15-6) unstable; urgency=low
 .
   * Fix init script not correctly killing htcacheclean. Closes: #580971
   * Add a separate entry in README.Debian about the need to use apache2ctl
     for starting instead of calling apache2 directly. Closes: #580445
   * Fix debug info to allow gdb loading it automatically. Closes: #581514
   * Fix install target in Makefile created by apxs2 -n. Closes: #588787
   * Fix ab sending more requests than specified by the -n parameter.
     Closes: #541158
   * Add apache2 monit configuration to apache2.2-commons examples dir.
     Closes: #583127
   * Build as PIE, since gdb in squeeze now supports it.
   * Update the postrm script to also purge the version of /var/www/index.html
     introduced in 2.2.11-7.
   * Bump Standards-Version (no changes).
Checksums-Sha1: 
 7aaca0509543cd96b969895bcc853f6bb531fb28 2038 apache2_2.2.16-1ubuntu1.dsc
 6937bd8b127541d6700b870681120b2b4cc79ba9 6369022 apache2_2.2.16.orig.tar.gz
 5addeeb2e28c1af146cca5ccf129c49a2d235a65 206227 apache2_2.2.16-1ubuntu1.diff.gz
Checksums-Sha256: 
 f08aa987c68152f8cd19cb1e26acca8f63a64146784602a47f58727ace55494d 2038 apache2_2.2.16-1ubuntu1.dsc
 72cdbaf0525b4c956532b308a0344ca7c287eb12759472481ae4affca71b6ed3 6369022 apache2_2.2.16.orig.tar.gz
 9f944dfdcd62bde448776ba38bee2aa4bcfcd3f38b736ead548a4d950a599919 206227 apache2_2.2.16-1ubuntu1.diff.gz
Files: 
 b5c217833d84b63c7f413e150fee79ae 2038 httpd optional apache2_2.2.16-1ubuntu1.dsc
 7f33f2c8b213ad758c009ae46d2795ed 6369022 httpd optional apache2_2.2.16.orig.tar.gz
 4c13fff1dde782aae3c5a40125cbfbb4 206227 httpd optional apache2_2.2.16-1ubuntu1.diff.gz
Original-Maintainer: Debian Apache Maintainers <debian-apache at lists.debian.org>
Original-Vcs-Browser: http://svn.debian.org/wsvn/pkg-apache/trunk/apache2
Original-Vcs-Svn: svn://svn.debian.org/pkg-apache/trunk/apache2

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iEYEARECAAYFAkxO7gYACgkQIHZ33voUATvilwCgrvupVZCs+nx8t9tlW/5UcWac
CecAnihRewtCkqCJu8mbcxc6zcZLMNhh
=XnJJ
-----END PGP SIGNATURE-----


More information about the Maverick-changes mailing list