apr-util 1.2.12+dfsg-7ubuntu0.1 source package in Ubuntu
Changelog
apr-util (1.2.12+dfsg-7ubuntu0.1) intrepid-security; urgency=low
* SECURITY UPDATE: Fix underflow in apr_strmatch_precompile
- debian/patches/017_CVE-2009-0023.dpatch: adjust strmatch/apr_strmatch.c
to properly evaluate strings as unsigned char rather than int
- CVE-2009-0023
* SECURITY UPDATE: Prevent "billion laughs" attack against expat
- debian/patches/018_CVE-2009-1955.dpatch: adjust xml/apr_xml.c to disable
internal entity expansion. Also add test case to the internal test
suite
- CVE-2009-1955
* SECURITY UPDATE: Fix off by one overflow in apr_brigade_vprintf
- debian/patches/019_CVE-2009-1956.dpatch: don't add null terminator to
vd.vbuff.curpos in buckets/apr_brigade.c
- CVE-2009-1956
-- Jamie Strandboge <email address hidden> Tue, 09 Jun 2009 11:45:43 -0500
Upload details
- Uploaded by:
- Jamie Strandboge
- Uploaded to:
- Intrepid
- Original maintainer:
- Ubuntu Development Team
- Architectures:
- any
- Section:
- libs
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| apr-util_1.2.12+dfsg.orig.tar.gz | 643.2 KiB | 0a8cf21eaada6ce138962dbcfe64bf49069f0ba4e8cfef3b169f4213844e5c7b |
| apr-util_1.2.12+dfsg-7ubuntu0.1.diff.gz | 25.0 KiB | 2f91b90612f1a55ec048aa23b2d53e30e64d03db22318e1231ab2ef5f53c208b |
| apr-util_1.2.12+dfsg-7ubuntu0.1.dsc | 1.6 KiB | 260bf391737e1ea05346b6106fea8a903ad4b4888535e49c57c4005bffd8f752 |
Available diffs
Binary packages built by this source
- libaprutil1: No summary available for libaprutil1 in ubuntu intrepid.
No description available for libaprutil1 in ubuntu intrepid.
- libaprutil1-dbg: No summary available for libaprutil1-dbg in ubuntu intrepid.
No description available for libaprutil1-dbg in ubuntu intrepid.
- libaprutil1-dev: No summary available for libaprutil1-dev in ubuntu intrepid.
No description available for libaprutil1-dev in ubuntu intrepid.
