Ubuntu
apache2 package

lp:ubuntu/lucid-proposed/apache2

Lucid (10.04)
lucid-proposed

Created by James Westby on 2011-01-21 and last modified on 2012-03-05

Get this branch:: bzr branch lp:ubuntu/lucid-proposed/apache2

Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

No branches dependent on this one.

Related bugs

Link a bug report

Related blueprints

Branch information

Owner:: Ubuntu branches

Review team:: Ubuntu Development Team

Status:: Mature

Recent revisions

65. By Chuck Short on 2012-03-02: debian/patches/99-fix-mod-dav-permissions.dpatch: Fix webdav permissions,
backported from trunk Thanks to James M. Leady (LP: #540747)
64. By Chuck Short on 2010-09-27: * debian/apache2.2-common.postinst: Don't fail if you can load the reqtimeout module.
(LP: #621837)
* debian/patches/Backport fix for upstream bug PR 45444: https://issues.apache.org/bugzilla/show_bug.cgi?id=45444. (LP: #609290, #589611, #595116)
63. By Marc Deslauriers on 2010-08-18: * debian/patches/211-sslinsecurerenegotiation-directive.dpatch: once
  openssl gets updated to fix CVE-2009-3555, server renegotiations with
  unpatched clients will fail. This patch adds the ability to revert to
  the previous unsafe behaviour with a new SSLInsecureRenegotiation
  directive. (LP: #616759)
* debian/control: add specific dependency on first openssl version to get
  CVE-2009-3555 fix.
62. By Chuck Short on 2010-08-06: debian/patches/upstream-fix-for-lp-609290.patch: Backport fix for upstream bug PR 45444.
https://issues.apache.org/bugzilla/show_bug.cgi?id=45444. (LP: #609290, #589611, #595116)
61. By Chuck Short on 2010-04-13: debian/patches/210-backport-mod-reqtimeout-ftbfs.dpatch: Add missing mod_reqtime.so
(LP: #562370)
60. By Chuck Short on 2010-04-05: * debian/patches/206-fix-potential-memory-leaks.dpatch: Fix potential memory
  leaks by making sure to not destroy bucket brigades that have been created
  by earlier filters. Backported from 2.2.15.
* debian/patches/206-report-max-client-mpm-worker.dpatch: Don't report server
  has reached MaxClients until it has. Backported from 2.2.15
* debian/config-dir/apache2.conf: Make the Files ~ "^\.ht" block in apache2.conf
  more secure by adding Satisfy all. (Debian bug: #572075)
* debian/rules, debian/patches/209-backport-mod-reqtimeout.dpatch,
  debian/config2-dir/mods-available/reqtimeout.load,
  debian/config2-dir/mods-available/reqtimeout.conf debian/NEWS : Backport the
  mod-reqtimeout module from 2.2.15, this will mitigate apache slowloris
  bug in apache. Enable it by default. (LP: #392759)
59. By Chuck Short on 2010-03-30: debian/apache2.2-common.apache2.init: Fix thinko. (LP: #551681)
58. By Chuck Short on 2010-03-30: Revert 99-fix-mod-dav-permissions.dpatch
57. By Chuck Short on 2010-03-29: * debian/patches/99-fix-mod-dav-permissions.dpatch: Fix permisisons when
downloading files from webdav (LP: #540747)
* debian/apache2.2-common.apache2.init: Add graceful restart (LP: #456381)
56. By Marc Deslauriers on 2010-03-10: * SECURITY UPDATE: denial of service via crafted request in mod_proxy_ajp
  - debian/patches/204_CVE-2010-0408.dpatch: return the right error code
    in modules/proxy/mod_proxy_ajp.c.
  - CVE-2010-0408
* SECURITY UPDATE: information disclosure via improper handling of
  headers in subrequests
  - debian/patches/205_CVE-2010-0434.dpatch: use a copy of r->headers_in
    in server/protocol.c.
  - CVE-2010-0434

Branch metadata

Branch format:: Branch format 7

Repository format:: Bazaar repository format 2a (needs bzr 1.16 or later)

Stacked on:: lp:ubuntu/natty/apache2

This branch contains Public information

Everyone can see this information.

Subscribers

Ubuntu branches

Ubuntuapache2 package