~ahasenack/ubuntu/+source/apache2:cosmic-apache2-2.4.33-3

Last commit made on 2018-05-17
Get this branch:
git clone -b cosmic-apache2-2.4.33-3 https://git.launchpad.net/~ahasenack/ubuntu/+source/apache2
Only Andreas Hasenack can upload to this branch. If you are Andreas Hasenack please log in for upload directions.

Branch merges

Branch information

Name:
cosmic-apache2-2.4.33-3
Repository:
lp:~ahasenack/ubuntu/+source/apache2

Recent commits

f56d4ee... by Andreas Hasenack on 2018-05-17

update-maintainer

0b664b4... by Andreas Hasenack on 2018-05-17

reconstruct-changelog

17d0c34... by Andreas Hasenack on 2018-05-17

merge-changelogs

466ac4c... by Andreas Hasenack on 2018-05-17

  * Added changes:
    - d/control, d/rules: Don't build libapache2-mod-proxy-uwsgi and
      libapache2-mod-md until we figure out their transitions.
      libapache2-mod-md in particular is problematic because that makes
      apache2-bin pull in libcurl4 which cannot be coinstalled with libcurl3.
      That situation breaks the installation of libapache2-mod-shib2. See
      https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1770242/comments/1
      for details.

8ab939e... by Andreas Hasenack on 2018-05-08

    - Avoid crashes, hangs and loops by fixing mod_ldap locking: (LP: #1752683)
      + added debian/patches/util_ldap_cache_lock_fix.patch
      [Already applied upstream]

afba5f5... by Andreas Hasenack on 2018-05-11

    - Correct systemd-sysv-generator behavior by customizing some
      parameters:
      + d/apache2-systemd.conf: add a drop-in file to specify some
        parameters for the systemd unit (type=Forking and
        RemainsAfterExit=no), this allow a correct state synchronisation
        between systemctl status and actual state of apache2 daemon.
      + d/apache2.install: place the apache2-systemd.conf file in the
        correct location.
      [type=Forking already in the base systemd service file, and
       RemainsAfterExit=no is the default value, so no need to
       customize these anymore.]

1441ea0... by Andreas Hasenack on 2018-05-08

    - SECURITY UPDATE: insecure nonce generation
      + debian/patches/CVE-2018-1312.patch: actually use the secret when
        generating nonces in modules/aaa/mod_auth_digest.c.
      + CVE-2018-1312

5406fbe... by Andreas Hasenack on 2018-05-08

    - SECURITY UPDATE: mod_cache_socache DoS
      + debian/patches/CVE-2018-1303.patch: fix caching of empty headers up
        to carriage return in modules/cache/mod_cache_socache.c.
      + CVE-2018-1303

d9ba5a1... by Andreas Hasenack on 2018-05-08

    - SECURITY UPDATE: DoS via specially-crafted request
      + debian/patches/CVE-2018-1301.patch: ensure that read lines are NUL
        terminated on any error, not only on buffer full in
        server/protocol.c.
      + CVE-2018-1301

94a8e5f... by Andreas Hasenack on 2018-05-08

    - SECURITY UPDATE: mod_session header manipulation
      + debian/patches/CVE-2018-1283.patch: strip Session header when
        SessionEnv is on in modules/session/mod_session.c.
      + CVE-2018-1283