-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2010-03-08 11:56:13 UTC
-
Revision ID:
james.westby@ubuntu.com-20100308115613-9jbm3if270d7mev5
Tags: 2.2.8-1ubuntu0.15
* SECURITY UPDATE: denial of service via crafted request in mod_proxy_ajp
- debian/patches/209_CVE-2010-0408.dpatch: return the right error code
in modules/proxy/mod_proxy_ajp.c.
- CVE-2010-0408
* SECURITY UPDATE: information disclosure via improper handling of
headers in subrequests
- debian/patches/210_CVE-2010-0434.dpatch: use a copy of r->headers_in
in server/protocol.c.
- CVE-2010-0434