lp:ubuntu/lucid/apache2

Created by James Westby on 2009-11-06 and last modified on 2010-04-13
Get this branch:
bzr branch lp:ubuntu/lucid/apache2
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Development

Recent revisions

61. By Chuck Short on 2010-04-13

debian/patches/210-backport-mod-reqtimeout-ftbfs.dpatch: Add missing mod_reqtime.so
(LP: #562370)

60. By Chuck Short on 2010-04-05

* debian/patches/206-fix-potential-memory-leaks.dpatch: Fix potential memory
  leaks by making sure to not destroy bucket brigades that have been created
  by earlier filters. Backported from 2.2.15.
* debian/patches/206-report-max-client-mpm-worker.dpatch: Don't report server
  has reached MaxClients until it has. Backported from 2.2.15
* debian/config-dir/apache2.conf: Make the Files ~ "^\.ht" block in apache2.conf
  more secure by adding Satisfy all. (Debian bug: #572075)
* debian/rules, debian/patches/209-backport-mod-reqtimeout.dpatch,
  debian/config2-dir/mods-available/reqtimeout.load,
  debian/config2-dir/mods-available/reqtimeout.conf debian/NEWS : Backport the
  mod-reqtimeout module from 2.2.15, this will mitigate apache slowloris
  bug in apache. Enable it by default. (LP: #392759)

59. By Chuck Short on 2010-03-30

debian/apache2.2-common.apache2.init: Fix thinko. (LP: #551681)

58. By Chuck Short on 2010-03-30

Revert 99-fix-mod-dav-permissions.dpatch

57. By Chuck Short on 2010-03-29

* debian/patches/99-fix-mod-dav-permissions.dpatch: Fix permisisons when
  downloading files from webdav (LP: #540747)
* debian/apache2.2-common.apache2.init: Add graceful restart (LP: #456381)

56. By Marc Deslauriers on 2010-03-10

* SECURITY UPDATE: denial of service via crafted request in mod_proxy_ajp
  - debian/patches/204_CVE-2010-0408.dpatch: return the right error code
    in modules/proxy/mod_proxy_ajp.c.
  - CVE-2010-0408
* SECURITY UPDATE: information disclosure via improper handling of
  headers in subrequests
  - debian/patches/205_CVE-2010-0434.dpatch: use a copy of r->headers_in
    in server/protocol.c.
  - CVE-2010-0434

55. By Chuck Short on 2010-03-08

debian/patches/203_fix-ab-segfault.dpatch: Fix segfaulting ab when using really
wacky options. (LP: #450501)

54. By Bhavani Shankar on 2010-01-13

* Merge from debian testing. Remaining changes: LP: #506862
  - debian/{control, rules}: Enable PIE hardening.
  - debian/{control, rules, apache2.2-common.ufw.profile}: Add ufw profiles.
  - debian/control: Add bzr tag and point it to our tree.

53. By Chuck Short on 2009-12-23

* Resynchronzie with Debian, remaining changes are:
 - debian/{control, rules}: Enable PIE hardening.
 - debian/{control, rules, pache2.2-common.ufw.profile}: Add ufw profiles.
 - debian/control: Add bzr tag and point it to our tree.

52. By Jamie Strandboge on 2009-11-12

* Merge from debian testing, remaining changes:
  - debian/{control, rules}: Enable PIE hardening.
  - debian/{control, rules, pache2.2-common.ufw.profile}: Add ufw profiles.
  - debian/conrol: Add bzr tag and point it to our tree.
  - removed debian/patches/203_fix_legacy_ap_rputs_segfaults.dpatch: it was
    already dropped from 00list, so just remove the patch entirely

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/maverick/apache2
This branch contains Public information 
Everyone can see this information.

Subscribers