[ubuntu/trusty-updates] libapache2-mod-perl2 2.0.8+httpd24-r1449661-6ubuntu2.1 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Wed Nov 21 16:28:12 UTC 2018
libapache2-mod-perl2 (2.0.8+httpd24-r1449661-6ubuntu2.1) trusty-security; urgency=medium
* SECURITY UPDATE: arbitrary perl code execution via .htaccess file
- debian/patches/CVE-2011-2767.patch: only allow perl and pod sections
in server configuration and not per directory in
src/modules/perl/mod_perl.c.
- CVE-2011-2767
* Fix FTBFS caused by test failures due to Apache security updates.
- debian/patches/370_http_syntax.patch
- debian/patches/380_inject_header_line_terminators.patch
Date: 2018-11-15 19:33:54.179625+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/libapache2-mod-perl2/2.0.8+httpd24-r1449661-6ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Trusty-changes
mailing list