Ubuntu
apache2 package

apache2 2.0.55-4ubuntu2.4 source package in Ubuntu

Changelog

apache2 (2.0.55-4ubuntu2.4) dapper-security; urgency=low

  * SECURITY UPDATE: Cross-site scripting (XSS) vulnerability in "413 Request
    Entity Too Large" error message
    - debian/patches/106_CVE-2007-6203.patch: properly escape some error
      messages in modules/http/http_protocol.c.
    - CVE-2007-6203
  * SECURITY UPDATE: Cross-site scripting (XSS) vulnerability via UTF-7 encoded
    URLs
    - debian/patches/107_CVE-2008-2168.patch: specify a default charset in
      modules/dav/main/mod_dav.c and modules/generators/mod_info.c.
    - CVE-2008-2168
  * SECURITY UPDATE: Denial of service via large number of interim responses in
    mod_proxy module (LP: #239894)
    - debian/patches/108_CVE-2008-2364.patch: limit the number of interim
      responses in modules/proxy/proxy_http.c.
    - CVE-2008-2364
  * SECURITY UPDATE: Cross-site scripting (XSS) vulnerability in the
    mod_proxy_ftp module
    - debian/patches/109_CVE-2008-2939.patch: escape the html contained in the
      wildcard value in modules/proxy/proxy_ftp.c.
    - CVE-2008-2939

 -- Marc Deslauriers <email address hidden>   Wed, 25 Feb 2009 08:59:04 -0500

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Dapper
Original maintainer:
Debian Apache Maintainers
Architectures:
any
Section:
net
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
apache2_2.0.55.orig.tar.gz 5.8 MiB 39bf7b4300f684673e0a33db981255285363565a8813f7fcd61944eb13998208
apache2_2.0.55-4ubuntu2.4.diff.gz 120.6 KiB 1e1ec8a0d12fbb7a00d95b6f7e901511fb5fd59f4bc2da4be21d5f4b38da12e0
apache2_2.0.55-4ubuntu2.4.dsc 1.1 KiB 9c563380a73b3f68b5c6776eb16cc69859c251a05eb523079dec642d760bf375

View changes file

Binary packages built by this source

apache2: No summary available for apache2 in ubuntu dapper.

No description available for apache2 in ubuntu dapper.

apache2-common: No summary available for apache2-common in ubuntu dapper.

No description available for apache2-common in ubuntu dapper.

apache2-doc: No summary available for apache2-doc in ubuntu dapper.

No description available for apache2-doc in ubuntu dapper.

apache2-mpm-perchild: No summary available for apache2-mpm-perchild in ubuntu dapper.

No description available for apache2-mpm-perchild in ubuntu dapper.

apache2-mpm-prefork: No summary available for apache2-mpm-prefork in ubuntu dapper.

No description available for apache2-mpm-prefork in ubuntu dapper.

apache2-mpm-worker: No summary available for apache2-mpm-worker in ubuntu dapper.

No description available for apache2-mpm-worker in ubuntu dapper.

apache2-prefork-dev: No summary available for apache2-prefork-dev in ubuntu dapper.

No description available for apache2-prefork-dev in ubuntu dapper.

apache2-threaded-dev: No summary available for apache2-threaded-dev in ubuntu dapper.

No description available for apache2-threaded-dev in ubuntu dapper.

apache2-utils: No summary available for apache2-utils in ubuntu dapper.

No description available for apache2-utils in ubuntu dapper.

libapr0: No summary available for libapr0 in ubuntu dapper.

No description available for libapr0 in ubuntu dapper.

libapr0-dev: No summary available for libapr0-dev in ubuntu dapper.

No description available for libapr0-dev in ubuntu dapper.