- Committer: Package Import Robot
- Date: 2012-02-14 10:02:26 UTC
- Revision ID: package-import@ubuntu.com-20120214100226-7gv7iktklzzkelf3
* SECURITY UPDATE: arbitrary code execution via crafted SetEnvIf
directive (LP: #811422)
- debian/patches/215_CVE-2011-3607.dpatch: validate length in
server/util.c.
- CVE-2011-3607
* SECURITY UPDATE: another mod_proxy reverse proxy exposure
- debian/patches/216_CVE-2011-4317.dpatch: validate additional URIs in
modules/mappers/mod_rewrite.c, modules/proxy/mod_proxy.c,
server/protocol.c.
- CVE-2011-4317
* SECURITY UPDATE: denial of service via invalid cookie
- debian/patches/217_CVE-2012-0021.dpatch: check name and value in
modules/loggers/mod_log_config.c.
- CVE-2012-0021
* SECURITY UPDATE: denial of service and possible code execution via
type field modification within a scoreboard shared memory segment
- debian/patches/218_CVE-2012-0031.dpatch: check type field in
server/scoreboard.c.
- CVE-2012-0031
* SECURITY UPDATE: cookie disclosure via Bad Request errors
- debian/patches/219_CVE-2012-0053.dpatch: check lengths in
server/protocol.c.
- CVE-2012-0053
directive (LP: #811422)
- debian/patches/215_CVE-2011-3607.dpatch: validate length in
server/util.c.
- CVE-2011-3607
* SECURITY UPDATE: another mod_proxy reverse proxy exposure
- debian/patches/216_CVE-2011-4317.dpatch: validate additional URIs in
modules/mappers/mod_rewrite.c, modules/proxy/mod_proxy.c,
server/protocol.c.
- CVE-2011-4317
* SECURITY UPDATE: denial of service via invalid cookie
- debian/patches/217_CVE-2012-0021.dpatch: check name and value in
modules/loggers/mod_log_config.c.
- CVE-2012-0021
* SECURITY UPDATE: denial of service and possible code execution via
type field modification within a scoreboard shared memory segment
- debian/patches/218_CVE-2012-0031.dpatch: check type field in
server/scoreboard.c.
- CVE-2012-0031
* SECURITY UPDATE: cookie disclosure via Bad Request errors
- debian/patches/219_CVE-2012-0053.dpatch: check lengths in
server/protocol.c.
- CVE-2012-0053
| Filename | Latest Rev | Last Changed | Committer | Comment | Size | ||
|---|---|---|---|---|---|---|---|
 ..
|
|||||||
001_branding |
12 | 17 years ago | Bazaar Package Importer | * Non-maintainer upload. * 043_ajp_connection_reus | 1013 bytes |
|
|
|
004_usr_bin_perl_0wnz_j00 |
12 | 17 years ago | Bazaar Package Importer | * Non-maintainer upload. * 043_ajp_connection_reus | 513 bytes |
|
|
|
008_make_include_safe |
12 | 17 years ago | Bazaar Package Importer | * Non-maintainer upload. * 043_ajp_connection_reus | 2.2 KB |
|
|
|
009_apache2_has_dso |
12 | 17 years ago | Bazaar Package Importer | * Non-maintainer upload. * 043_ajp_connection_reus | 1.2 KB |
|
|
|
00list |
70 | 12 years ago | Package Import Robot | * SECURITY UPDATE: arbitrary code execution via cr | 1 KB |
|
|
|
010_fhs_compliance |
14.3.11 | 14 years ago | Bazaar Package Importer | * Fix potential memory leaks related to the usage | 3 KB |
|
|
|
031_apxs2_sucks_more |
14.3.17 | 13 years ago | Bazaar Package Importer | * Urgency medium for security fix. * New upstream | 3.9 KB |
|
|
|
032_suexec_is_shared |
12 | 17 years ago | Bazaar Package Importer | * Non-maintainer upload. * 043_ajp_connection_reus | 706 bytes |
|
|
|
033_dbm_read_hash_or_btree |
14.3.13 | 14 years ago | Bazaar Package Importer | * Make the Files ~ "^\.ht" block in apache2.conf m | 1.2 KB |
|
|
|
034_apxs2_libtool_fixtastic |
12 | 17 years ago | Bazaar Package Importer | * Non-maintainer upload. * 043_ajp_connection_reus | 1 KB |
|
|
|
038_no_LD_LIBRARY_PATH |
12 | 17 years ago | Bazaar Package Importer | * Non-maintainer upload. * 043_ajp_connection_reus | 537 bytes |
|
|
|
045_suexec_log_cloexec.dpatch |
15 | 16 years ago | Bazaar Package Importer | [ Tollef Fog Heen ] * Fix up apache2-src so the .t | 1.4 KB |
|
|
|
047_fix_usage_message.dpatch |
14.3.23 | 13 years ago | Bazaar Package Importer | * New upstream version * Disable md5 in mod_ssl de | 1.1 KB |
|
|
|
052_logresolve_linelength.dpatch |
22 | 16 years ago | Bazaar Package Importer | * Avoid calling apr_pollset_poll() and accept_func | 1.9 KB |
|
|
|
057_disablemods.dpatch |
27 | 16 years ago | Bazaar Package Importer | * mod_cache: Handle If-Range correctly if the cach | 1.7 KB |
|
|
|
058_suexec-CVE-2007-1742.dpatch |
31 | 15 years ago | Bazaar Package Importer | * Merge from debian unstable, remaining changes: | 1.9 KB |
|
|
|
067_fix_segfault_in_ab.dpatch |
14.2.2 | 15 years ago | Bazaar Package Importer | Rebuild against apr-util 1.3, to fix undefined sym | 784 bytes |
|
|
|
069_no_deflate_for_HEAD.dpatch |
14.3.2 | 14 years ago | Bazaar Package Importer | * New upstream release: - Adds support for TLS S | 1 KB |
|
|
|
071_fix_cacheenable.dpatch |
14.3.6 | 14 years ago | Bazaar Package Importer | * Security: Reject any client-initiated SSL/TLS | 4.5 KB |
|
|
|
073_mod_dav_trunk_fixes.dpatch |
14.3.15 | 14 years ago | Bazaar Package Importer | * Conflict with apache package as we now include a | 19.5 KB |
|
|
|
074_link_support_progs_with_lcrypt.dpatch |
14.3.8 | 14 years ago | Bazaar Package Importer | * Disable localized error pages again by default b | 1.1 KB |
|
|
|
075_mod_rewrite_literal_ipv6_redirect.dpatch |
14.3.8 | 14 years ago | Bazaar Package Importer | * Disable localized error pages again by default b | 1.6 KB |
|
|
|
076_apxs2_a2enmod.dpatch |
14.4.4 | 13 years ago | Bazaar Package Importer | * Urgency medium for security fix. * New upstream | 6.4 KB |
|
|
|
077_CacheIgnoreURLSessionIdentifiers.dpatch |
14.3.11 | 14 years ago | Bazaar Package Importer | * Fix potential memory leaks related to the usage | 3.4 KB |
|
|
|
079_polish_translation.dpatch |
14.4.1 | 14 years ago | Bazaar Package Importer | * Fix potential memory leaks related to the usage | 797 bytes |
|
|
|
082_ab_num_requests.dpatch |
14.3.17 | 13 years ago | Bazaar Package Importer | * Urgency medium for security fix. * New upstream | 1.2 KB |
|
|
|
083_CVE-2011-3192.dpatch |
68 | 12 years ago | Package Import Robot | * SECURITY UPDATE: Range header DoS vulnerability | 20.9 KB |
|
|
|
084_CVE-2011-3192_regression.dpatch |
68 | 12 years ago | Package Import Robot | * SECURITY UPDATE: Range header DoS vulnerability | 5.6 KB |
|
|
|
085_CVE-2011-3192_regression_part2.dpatch |
69 | 12 years ago | Package Import Robot | * SECURITY UPDATE: mod_proxy reverse proxy exposur | 8.2 KB |
|
|
|
099_config_guess_sub_update.dpatch |
12 | 17 years ago | Bazaar Package Importer | * Non-maintainer upload. * 043_ajp_connection_reus | 78.5 KB |
|
|
|
200_cp_suexec.dpatch |
31 | 15 years ago | Bazaar Package Importer | * Merge from debian unstable, remaining changes: | 229 bytes |
|
|
|
201_build_suexec-custom.dpatch |
31 | 15 years ago | Bazaar Package Importer | * Merge from debian unstable, remaining changes: | 1.3 KB |
|
|
|
202_suexec-custom.dpatch |
31 | 15 years ago | Bazaar Package Importer | * Merge from debian unstable, remaining changes: | 5.6 KB |
|
|
|
212_CVE-2011-3368.dpatch |
69 | 12 years ago | Package Import Robot | * SECURITY UPDATE: mod_proxy reverse proxy exposur | 1.4 KB |
|
|
|
213_CVE-2011-3348.dpatch |
69 | 12 years ago | Package Import Robot | * SECURITY UPDATE: mod_proxy reverse proxy exposur | 1 KB |
|
|
|
214_CVE-2011-3368_part2.dpatch |
69 | 12 years ago | Package Import Robot | * SECURITY UPDATE: mod_proxy reverse proxy exposur | 5.3 KB |
|
|
|
215_CVE-2011-3607.dpatch |
70 | 12 years ago | Package Import Robot | * SECURITY UPDATE: arbitrary code execution via cr | 1.4 KB |
|
|
|
216_CVE-2011-4317.dpatch |
70 | 12 years ago | Package Import Robot | * SECURITY UPDATE: arbitrary code execution via cr | 2.8 KB |
|
|
|
217_CVE-2012-0021.dpatch |
70 | 12 years ago | Package Import Robot | * SECURITY UPDATE: arbitrary code execution via cr | 1.9 KB |
|
|
|
218_CVE-2012-0031.dpatch |
70 | 12 years ago | Package Import Robot | * SECURITY UPDATE: arbitrary code execution via cr | 1.3 KB |
|
|
|
219_CVE-2012-0053.dpatch |
70 | 12 years ago | Package Import Robot | * SECURITY UPDATE: arbitrary code execution via cr | 4.6 KB |
|
|