[Bug 1604209] Re: apache2 in trusty-backports is vulnerable to CVE-2016-5387

Iain Lane iain at orangesquash.org.uk
Wed Aug 31 15:37:43 UTC 2016


I'll upload this for you if it builds.

Normally we would expect this kind of thing to be fixed by re-
backporting from a later release though. If xenial's apache2 works on
trusty, it'd be cool to backport that.

** Changed in: trusty-backports
       Status: New => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1604209

Title:
  apache2 in trusty-backports is vulnerable to CVE-2016-5387

Status in trusty-backports:
  Fix Released
Status in apache2 package in Ubuntu:
  Invalid

Bug description:
  The patch is small and easy, will attach a debdiff once I get it
  together.

  Not checking that this is a security vuln because trusty-backports
  technically doesn't get security attention.

To manage notifications about this bug go to:
https://bugs.launchpad.net/trusty-backports/+bug/1604209/+subscriptions



More information about the Ubuntu-sponsors mailing list