Ubuntu
apache2 package

apache2 2.0.55-4ubuntu2.3 source package in Ubuntu

Changelog

apache2 (2.0.55-4ubuntu2.3) dapper-security; urgency=low

  * SECURITY UPDATE: denial of service (application crash) when using
    mod_proxy in threaded MPM via crafted date headers.
  * debian/patches/100_CVE-2007-3847.patch: fix proxy_util.c to use
    apr_date_parse_http() and apr_rfc822_date()
  * SECURITY UPDATE: cross-site scripting vulnerability in mod_autoindex.c
    when charset not defined
  * debian/patches/101_CVE-2007-4465.patch: fix mod_autoindex.c to properly
    check for and use charset
  * SECURITY UPDATE: cross-site scripting vulnerability in mod_imap
  * debian/patches/102_CVE-2007-5000.patch: fix for mod_imap.c to use
    ap_escape_html()
  * SECURITY UPDATE: cross-site scripting vulnerability in mod_status when
    server-status is enabled
  * debian/patches/103_CVE-2007-6388.patch: fix for mod_status.c to properly
    setup table
  * SECURITY UPDATE: cross-site scripting vulnerability in proxy_ftp when
    charset is not defined
  * debian/patches/104_CVE-2008-0005.patch: fix for proxy_ftp.c to define
    a charset
  * SECURITY UPDATE: cross-site scripting vulnerability in Expect headers
  * debian/patches/105_CVE-2006-3918.patch: fix for http_protocol.c to use
    ap_escape_html()
  * References
    CVE-2007-3847
    CVE-2007-4465
    CVE-2007-5000
    CVE-2007-6388
    CVE-2008-0005
    CVE-2006-3918

 -- Jamie Strandboge <email address hidden>   Tue, 29 Jan 2008 20:18:52 +0000

Upload details

Uploaded by:: Jamie Strandboge on 2008-02-04

Uploaded to:: Dapper

Original maintainer:: Debian Apache Maintainers

Architectures:: any

Section:: web

Urgency:: Low Urgency

See full publishing history Publishing

Series	Pocket	Published	Component	Section

Builds

Dapper: amd64 hppa i386 ia64 powerpc sparc

Downloads

File	Size	SHA-256 Checksum
apache2_2.0.55.orig.tar.gz	5.8 MiB	39bf7b4300f684673e0a33db981255285363565a8813f7fcd61944eb13998208
apache2_2.0.55-4ubuntu2.3.diff.gz	118.5 KiB	ca665bb432ceb795f9ea0362d57e8d869e152e4eee7555e3e3218593eecbb187
apache2_2.0.55-4ubuntu2.3.dsc	1.1 KiB	6fadbcf235dd32aabdf9e6ff17ad814da5bb80f834a786819dcc0bff0ffa0998

View changes file

Binary packages built by this source

apache2: No summary available for apache2 in ubuntu dapper.: No description available for apache2 in ubuntu dapper.

apache2-common: No summary available for apache2-common in ubuntu dapper.: No description available for apache2-common in ubuntu dapper.

apache2-doc: No summary available for apache2-doc in ubuntu dapper.: No description available for apache2-doc in ubuntu dapper.

apache2-mpm-perchild: No summary available for apache2-mpm-perchild in ubuntu dapper.: No description available for apache2-mpm-perchild in ubuntu dapper.

apache2-mpm-prefork: No summary available for apache2-mpm-prefork in ubuntu dapper.: No description available for apache2-mpm-prefork in ubuntu dapper.

apache2-mpm-worker: No summary available for apache2-mpm-worker in ubuntu dapper.: No description available for apache2-mpm-worker in ubuntu dapper.

apache2-prefork-dev: No summary available for apache2-prefork-dev in ubuntu dapper.: No description available for apache2-prefork-dev in ubuntu dapper.

apache2-threaded-dev: No summary available for apache2-threaded-dev in ubuntu dapper.: No description available for apache2-threaded-dev in ubuntu dapper.

apache2-utils: No summary available for apache2-utils in ubuntu dapper.: No description available for apache2-utils in ubuntu dapper.

libapr0: No summary available for libapr0 in ubuntu dapper.: No description available for libapr0 in ubuntu dapper.

libapr0-dev: No summary available for libapr0-dev in ubuntu dapper.: No description available for libapr0-dev in ubuntu dapper.

Ubuntuapache2 package

apache2 2.0.55-4ubuntu2.3 source package in Ubuntu

Changelog

Upload details

See full publishing history Publishing

Builds

Downloads

Binary packages built by this source

Ubuntu
apache2 package