-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2010-03-10 14:48:48 UTC
-
Revision ID:
james.westby@ubuntu.com-20100310144848-sman9v72pc1b68v5
Tags: 2.2.14-5ubuntu3
* SECURITY UPDATE: denial of service via crafted request in mod_proxy_ajp
- debian/patches/204_CVE-2010-0408.dpatch: return the right error code
in modules/proxy/mod_proxy_ajp.c.
- CVE-2010-0408
* SECURITY UPDATE: information disclosure via improper handling of
headers in subrequests
- debian/patches/205_CVE-2010-0434.dpatch: use a copy of r->headers_in
in server/protocol.c.
- CVE-2010-0434