apache2 2.2.17-1ubuntu1.5 source package in Ubuntu
Changelog
apache2 (2.2.17-1ubuntu1.5) natty-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via crafted SetEnvIf
directive (LP: #811422)
- debian/patches/215_CVE-2011-3607.dpatch: validate length in
server/util.c.
- CVE-2011-3607
* SECURITY UPDATE: another mod_proxy reverse proxy exposure
- debian/patches/216_CVE-2011-4317.dpatch: validate additional URIs in
modules/mappers/mod_rewrite.c, modules/proxy/mod_proxy.c,
server/protocol.c.
- CVE-2011-4317
* SECURITY UPDATE: denial of service via invalid cookie
- debian/patches/217_CVE-2012-0021.dpatch: check name and value in
modules/loggers/mod_log_config.c.
- CVE-2012-0021
* SECURITY UPDATE: denial of service and possible code execution via
type field modification within a scoreboard shared memory segment
- debian/patches/218_CVE-2012-0031.dpatch: check type field in
server/scoreboard.c.
- CVE-2012-0031
* SECURITY UPDATE: cookie disclosure via Bad Request errors
- debian/patches/219_CVE-2012-0053.dpatch: check lengths in
server/protocol.c.
- CVE-2012-0053
-- Marc Deslauriers <email address hidden> Tue, 14 Feb 2012 10:02:26 -0500
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Natty
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- httpd
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| apache2_2.2.17.orig.tar.gz | 6.3 MiB | 17c0aa66a704d04b4a1952eb3b077146104f923a53d602297e1def01344ac876 |
| apache2_2.2.17-1ubuntu1.5.diff.gz | 218.7 KiB | 897899394ed7508ef6bcfc9e4a2a9db986bf1690bb3d6e1388d6d6ea6dbbc2a5 |
| apache2_2.2.17-1ubuntu1.5.dsc | 2.6 KiB | aa5c0067fd08661fdfceb4962661374b6b6d2f6ce84df403f29ab672c26fd315 |
Available diffs
Binary packages built by this source
- apache2: No summary available for apache2 in ubuntu natty.
No description available for apache2 in ubuntu natty.
- apache2-doc: No summary available for apache2-doc in ubuntu natty.
No description available for apache2-doc in ubuntu natty.
- apache2-mpm-event: No summary available for apache2-mpm-event in ubuntu natty.
No description available for apache2-mpm-event in ubuntu natty.
- apache2-mpm-itk: No summary available for apache2-mpm-itk in ubuntu natty.
No description available for apache2-mpm-itk in ubuntu natty.
- apache2-mpm-prefork: No summary available for apache2-mpm-prefork in ubuntu natty.
No description available for apache2-mpm-prefork in ubuntu natty.
- apache2-mpm-worker: No summary available for apache2-mpm-worker in ubuntu natty.
No description available for apache2-mpm-worker in ubuntu natty.
- apache2-prefork-dev: No summary available for apache2-prefork-dev in ubuntu natty.
No description available for apache2-prefork-dev in ubuntu natty.
- apache2-suexec: No summary available for apache2-suexec in ubuntu natty.
No description available for apache2-suexec in ubuntu natty.
- apache2-suexec-custom: No summary available for apache2-suexec-custom in ubuntu natty.
No description available for apache2-
suexec- custom in ubuntu natty.
- apache2-threaded-dev: No summary available for apache2-threaded-dev in ubuntu natty.
No description available for apache2-
threaded- dev in ubuntu natty.
- apache2-utils: No summary available for apache2-utils in ubuntu natty.
No description available for apache2-utils in ubuntu natty.
- apache2.2-bin: No summary available for apache2.2-bin in ubuntu natty.
No description available for apache2.2-bin in ubuntu natty.
- apache2.2-common: No summary available for apache2.2-common in ubuntu natty.
No description available for apache2.2-common in ubuntu natty.
