~ubuntu-branches/ubuntu/jaunty/apache2/jaunty-proposed

Viewing all changes in revision 49.

  • Committer: Bazaar Package Importer
  • Author(s): Marc Deslauriers
  • Date: 2010-03-08 11:26:48 UTC
  • Revision ID: james.westby@ubuntu.com-20100308112648-vdj61th2y2mpo2wl
Tags: 2.2.11-2ubuntu2.6
* SECURITY UPDATE: denial of service via crafted request in mod_proxy_ajp
  - debian/patches/907_CVE-2010-0408.dpatch: return the right error code
    in modules/proxy/mod_proxy_ajp.c.
  - CVE-2010-0408
* SECURITY UPDATE: information disclosure via improper handling of
  headers in subrequests
  - debian/patches/908_CVE-2010-0434.dpatch: use a copy of r->headers_in
    in server/protocol.c.
  - CVE-2010-0434

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: