-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2010-03-08 10:25:00 UTC
-
Revision ID:
james.westby@ubuntu.com-20100308102500-6ixdgktxeii64ju8
Tags: 2.2.12-1ubuntu2.2
* SECURITY UPDATE: denial of service via crafted request in mod_proxy_ajp
- debian/patches/903_CVE-2010-0408.dpatch: return the right error code
in modules/proxy/mod_proxy_ajp.c.
- CVE-2010-0408
* SECURITY UPDATE: information disclosure via improper handling of
headers in subrequests
- debian/patches/904_CVE-2010-0434.dpatch: use a copy of r->headers_in
in server/protocol.c.
- CVE-2010-0434