-
Committer:
Package Import Robot
-
Author(s):
Steve Beattie
-
Date:
2011-09-01 01:52:17 UTC
-
mfrom:
(61.1.3 lucid-security)
-
Revision ID:
package-import@ubuntu.com-20110901015217-hgdzd9h6sw8kg8x6
Tags: 2.2.14-5ubuntu8.6
* SECURITY UPDATE: Range header DoS vulnerability
- debian/patches/207_CVE-2011-3192.dpatch: filter out large
byte ranges and improve memory efficiency in handling buckets.
(thanks to Debian and upstream)
- CVE-2011-3192
* Include fix for regressions introduced by above patch:
- debian/patches/208_CVE-2011-3192_regression.dpatch: return 206
and 416 response codes where appropriate (see deban bug 639825)