-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2010-11-18 14:39:06 UTC
-
Revision ID:
james.westby@ubuntu.com-20101118143906-u2mbkljyfeonraxa
Tags: 2.0.55-4ubuntu2.12
* SECURITY UPDATE: denial of service via request that lacks a path in
mod_dav.
- debian/patches/120_CVE-2010-1452.dpatch: fix path handling in
modules/dav/main/util.c.
- CVE-2010-1452
* SECURITY UPDATE: denial of service via memory leak in
apr_brigade_split_line function.
- debian/patches/121_CVE-2010-1623.dpatch: properly destroy bucket in
srclib/apr-util/buckets/apr_brigade.c.
- CVE-2010-1623