* Merge with Debian unstable (LP: #1971248). Remaining changes:
- debian/{control, apache2.install, apache2-utils.ufw.profile,
apache2.dirs}: Add ufw profiles.
(LP 261198)
- debian/apache2.py, debian/apache2-bin.install: Add apport hook.
(LP 609177)
- d/index.html, d/icons/ubuntu-logo.png, d/apache2.postrm,
d/s/include-binaries: replace Debian with Ubuntu on default
page and add Ubuntu icon file.
(LP 1288690)
- d/index.html, d/icons/ubuntu-logo.png: Refresh page design and
new logo
(LP 1966004)
- d/apache2.postrm: Include md5 sum for updated index.html
* Dropped:
- OOB read in mod_lua via crafted request body
+ d/p/CVE-2022-22719.patch: error out if lua_read_body() or lua_write_body() fail in modules/lua/lua_request.c.
[Fixed in 2.4.53 upstream]
- HTTP Request Smuggling via error discarding the
request body
+ d/p/CVE-2022-22720.patch: simpler connection close logic
if discarding the request body fails in modules/http/http_filters.c, server/protocol.c.
[Fixed in 2.4.53 upstream]
- overflow via large LimitXMLRequestBody
+ d/p/CVE-2022-22721.patch: make sure and check that LimitXMLRequestBody fits in system memory in server/core.c, server/util.c, server/util_xml.c.
[Fixed in 2.4.53 upstream]
- out-of-bounds write in mod_sed
+ d/p/CVE-2022-23943-1.patch: use size_t to allow for larger
buffer sizes and unsigned arithmetics in modules/filters/libsed.h, modules/filters/mod_sed.c, modules/filters/sed1.c.
+ d/p/CVE-2022-23943-2.patch: improve the logic flow in modules/filters/mod_sed.c.
[Fixed in 2.4.53 upstream]
This bug was fixed in the package apache2 - 2.4.53-2ubuntu1
---------------
apache2 (2.4.53-2ubuntu1) kinetic; urgency=medium
* Merge with Debian unstable (LP: #1971248). Remaining changes: utils.ufw. profile, dirs}: Add ufw profiles. apache2- bin.install: Add apport hook. ubuntu- logo.png, d/apache2.postrm, s/include- binaries: replace Debian with Ubuntu on default ubuntu- logo.png: Refresh page design and 2022-22719. patch: error out if lua_read_body() or
lua_write_ body() fail in modules/ lua/lua_ request. c. 2022-22720. patch: simpler connection close logic http/http_ filters. c,
server/ protocol. c. 2022-22721. patch: make sure and check that
LimitXMLReques tBody fits in system memory in server/core.c,
server/ util.c, server/util_xml.c. 2022-23943- 1.patch: use size_t to allow for larger filters/ libsed. h,
modules/ filters/ mod_sed. c, modules/ filters/ sed1.c. 2022-23943- 2.patch: improve the logic flow in
modules/ filters/ mod_sed. c.
- debian/{control, apache2.install, apache2-
apache2.
(LP 261198)
- debian/apache2.py, debian/
(LP 609177)
- d/index.html, d/icons/
d/
page and add Ubuntu icon file.
(LP 1288690)
- d/index.html, d/icons/
new logo
(LP 1966004)
- d/apache2.postrm: Include md5 sum for updated index.html
* Dropped:
- OOB read in mod_lua via crafted request body
+ d/p/CVE-
[Fixed in 2.4.53 upstream]
- HTTP Request Smuggling via error discarding the
request body
+ d/p/CVE-
if discarding the request body fails in modules/
[Fixed in 2.4.53 upstream]
- overflow via large LimitXMLRequestBody
+ d/p/CVE-
[Fixed in 2.4.53 upstream]
- out-of-bounds write in mod_sed
+ d/p/CVE-
buffer sizes and unsigned arithmetics in modules/
+ d/p/CVE-
[Fixed in 2.4.53 upstream]
-- Bryce Harrington <email address hidden> Mon, 23 May 2022 19:34:18 -0700