[ubuntu/vivid-proposed] apache2 2.4.10-9ubuntu1 (Accepted)

Martin Pitt martin.pitt at ubuntu.com
Mon Mar 9 11:52:18 UTC 2015 

apache2 (2.4.10-9ubuntu1) vivid; urgency=medium

  * Merge from Debian unstable. Remaining changes:
    - debian/{control, apache2.install, apache2-utils.ufw.profile,
      apache2.dirs}: Add ufw profiles.
    - debian/apache2.py, debian/apache2-bin.install: Add apport hook.
    - d/control, d/config-dir/mods-available/ssl.conf,
    - Add dep8 tests.
    - debian/rules: Fix cross-building by passing
      DEB_{HOST,BUILD}_GNU_TYPE to configure.
    - debian/patches/086_svn_cross_compiles: Backport several cross
      fixes from upstream
    - d/index.html: replace Debian with Ubuntu on default page.
    - d/p/split-logfile.patch: fix completely broken split-logfile
      command.
    - d/p/CVE-2015-0228.patch: fix logic in modules/lua/lua_request.c to fix a
      denial of service in mod_lua via websockets PING
  * debian/tests/ssl-passphrase: Add password responder for
    systemd-ask-passphrase.

apache2 (2.4.10-9) unstable; urgency=medium

  * CVE-2014-8109: mod_lua: Fix handling of the Require line when a
    LuaAuthzProvider is used in multiple Require directives with different
    arguments.
  * Include ask-for-passphrase script from Ubuntu with some tweaks. This
    fixes asking for certificate passphrases if started via systemd.
    Closes: #773405
  * Fix init script to not wait 20s if passphrase was wrong.
  * Also bump debhelper build-depends to get dh_installdeb with support for
    symlink_to_dir. Closes: #770421

Date: Mon, 09 Mar 2015 12:03:16 +0100
Changed-By: Martin Pitt <martin.pitt at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/apache2/2.4.10-9ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 09 Mar 2015 12:03:16 +0100
Source: apache2
Binary: apache2 apache2-data apache2-bin apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-mpm-itk apache2.2-bin apache2.2-common libapache2-mod-proxy-html libapache2-mod-macro apache2-utils apache2-suexec apache2-suexec-pristine apache2-suexec-custom apache2-doc apache2-dev apache2-dbg
Architecture: source
Version: 2.4.10-9ubuntu1
Distribution: vivid
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Martin Pitt <martin.pitt at ubuntu.com>
Description:
 apache2    - Apache HTTP Server
 apache2-bin - Apache HTTP Server (modules and other binary files)
 apache2-data - Apache HTTP Server (common files)
 apache2-dbg - Apache debugging symbols
 apache2-dev - Apache HTTP Server (development headers)
 apache2-doc - Apache HTTP Server (on-site documentation)
 apache2-mpm-event - transitional event MPM package for apache2
 apache2-mpm-itk - transitional itk MPM package for apache2
 apache2-mpm-prefork - transitional prefork MPM package for apache2
 apache2-mpm-worker - transitional worker MPM package for apache2
 apache2-suexec - transitional package for apache2-suexec-pristine
 apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec
 apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec
 apache2-utils - Apache HTTP Server (utility programs for web servers)
 apache2.2-bin - Transitional package for apache2-bin
 apache2.2-common - Transitional package for apache2
 libapache2-mod-macro - Transitional package for apache2-bin
 libapache2-mod-proxy-html - Transitional package for apache2-bin
Closes: 770421 773405
Changes:
 apache2 (2.4.10-9ubuntu1) vivid; urgency=medium
 .
   * Merge from Debian unstable. Remaining changes:
     - debian/{control, apache2.install, apache2-utils.ufw.profile,
       apache2.dirs}: Add ufw profiles.
     - debian/apache2.py, debian/apache2-bin.install: Add apport hook.
     - d/control, d/config-dir/mods-available/ssl.conf,
     - Add dep8 tests.
     - debian/rules: Fix cross-building by passing
       DEB_{HOST,BUILD}_GNU_TYPE to configure.
     - debian/patches/086_svn_cross_compiles: Backport several cross
       fixes from upstream
     - d/index.html: replace Debian with Ubuntu on default page.
     - d/p/split-logfile.patch: fix completely broken split-logfile
       command.
     - d/p/CVE-2015-0228.patch: fix logic in modules/lua/lua_request.c to fix a
       denial of service in mod_lua via websockets PING
   * debian/tests/ssl-passphrase: Add password responder for
     systemd-ask-passphrase.
 .
 apache2 (2.4.10-9) unstable; urgency=medium
 .
   * CVE-2014-8109: mod_lua: Fix handling of the Require line when a
     LuaAuthzProvider is used in multiple Require directives with different
     arguments.
   * Include ask-for-passphrase script from Ubuntu with some tweaks. This
     fixes asking for certificate passphrases if started via systemd.
     Closes: #773405
   * Fix init script to not wait 20s if passphrase was wrong.
   * Also bump debhelper build-depends to get dh_installdeb with support for
     symlink_to_dir. Closes: #770421
Checksums-Sha1:
 b0d2f8c2b88dbfb091b7345710f301195eb6e0d8 3380 apache2_2.4.10-9ubuntu1.dsc
 984469917df425800110e62f88eaacabca525513 541656 apache2_2.4.10-9ubuntu1.debian.tar.xz
Checksums-Sha256:
 8c944ebe5336a34f46e816c3858a75cecea80ecfc66d26c4488fd6410e2b4bf3 3380 apache2_2.4.10-9ubuntu1.dsc
 5309cf970617c4a0736c3dc8ef28e92edd4e4e585aa27ad9a12916c19c908c48 541656 apache2_2.4.10-9ubuntu1.debian.tar.xz
Files:
 cfa40c240b47350a936986038f5a5bb0 3380 httpd optional apache2_2.4.10-9ubuntu1.dsc
 d7b5275f0dc021516d014dbf5b1ecf3a 541656 httpd optional apache2_2.4.10-9ubuntu1.debian.tar.xz
Original-Maintainer: Debian Apache Maintainers <debian-apache at lists.debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQIcBAEBCAAGBQJU/YjvAAoJENFO8V2v4RNH++wP/15LJ9Tf3O6ia7oGAeO1B+Z0
i2LrDURBOrK6TdB966584mpng8CfiZFCydUutmwnClJSrgsXOdjny+6wuzMl0Z3B
5iUqfJnq7qOh2SFeMgbo89xzgVBFuD7Wlw1Vk2kTlmmSW6ZFhe3hDZR3J/S8KnGU
k+fbQ+ReNNNrBwyD80egh0BlYUowFOf3SQegjO/t8pv67LjIx1r8wvWXkJgHqvGO
EvbQO9xE6hatCnevMe74Pe+tXS8Gfw5nL+Hdkq5q1c/gmOwVCZ1YaieNdqPsXOBa
IUDBMRDCae1g5vVRBcvuRaQxpHF0cBrgG8l3FaNzuc8u+mmus/KbLHVEQL+O/8Bo
bKbpy6DIVEy0SDV/MzE/P+A5xzGOIdX3c4Ld9aHlSpOwE2iCvxDf6PFNmMJFGIFX
8D1gg/cS4lYaWyiJHYFg5EsP8vkwS/CuGeTzqUZIxOaBmhur1VjCjO/r6MfBKQvg
gN9iKFMqi8gCFsyb2l5PwC/10a1V5J2w1zyXXfOZJbJYeKxFC4WIG2LY3K5LnDHl
6K5epPjKC7sY5J0LeBHIZzJCD0c+GyuE9hI8/JDyr6ihEaAVwRnl5KeBa5QTu2gZ
/l9agWVbrpFZLWGDUOWKgzjZnPvLYe4GXLlUJFd4UfDr89wUQTQZHQZqG4RKthPy
t/Sg18ircY2DID/i47Pj
=ZlCK
-----END PGP SIGNATURE-----

More information about the Vivid-changes mailing list