lp:~usd-import-team/ubuntu/+source/apache2

Get this repository:
git clone https://git.launchpad.net/~usd-import-team/ubuntu/+source/apache2
Members of Ubuntu Server Dev import team can upload to this repository. Log in for directions.

Branches

Name Last Modified Last Commit
applied/debian/buster 2017-10-29 04:40:14 UTC 2017-10-29
Import patches-applied version 2.4.29-1 to applied/debian/buster

Author: Ondřej Surý
Author Date: 2017-10-23 14:46:55 UTC

Import patches-applied version 2.4.29-1 to applied/debian/buster

Imported using git-ubuntu import.

Publish parent: 6c413968b777114b58272e282727ef4646a3ddc9
Changelog parent: 5cd5b8ded358b7fd2a8291e7e832e9e088d13a48
Unapplied parent: 8a892893bee62f4e4e13bd149f6183df38ca42f7

debian/buster 2017-10-29 04:40:14 UTC 2017-10-29
Import patches-unapplied version 2.4.29-1 to debian/buster

Author: Ondřej Surý
Author Date: 2017-10-23 14:46:55 UTC

Import patches-unapplied version 2.4.29-1 to debian/buster

Imported using git-ubuntu import.

Publish parent: a8b932d3ac2c65dd803aae0adcffd96e07a20831
Changelog parent: 8a892893bee62f4e4e13bd149f6183df38ca42f7

ubuntu/bionic 2017-10-24 21:55:24 UTC 2017-10-24
Import patches-unapplied version 2.4.27-2ubuntu3 to ubuntu/bionic

Author: Marc Deslauriers
Author Date: 2017-09-18 15:05:48 UTC

Import patches-unapplied version 2.4.27-2ubuntu3 to ubuntu/bionic

Imported using git-ubuntu import.

Publish parent: b00b67b44a67d51e42c83bd2cebbe31f4438ca22

ubuntu/bionic-devel 2017-10-24 21:55:24 UTC 2017-10-24
Import patches-unapplied version 2.4.27-2ubuntu3 to ubuntu/bionic

Author: Marc Deslauriers
Author Date: 2017-09-18 15:05:48 UTC

Import patches-unapplied version 2.4.27-2ubuntu3 to ubuntu/bionic

Imported using git-ubuntu import.

Publish parent: b00b67b44a67d51e42c83bd2cebbe31f4438ca22

applied/ubuntu/bionic-devel 2017-10-24 21:55:24 UTC 2017-10-24
Import patches-applied version 2.4.27-2ubuntu3 to applied/ubuntu/bionic

Author: Marc Deslauriers
Author Date: 2017-09-18 15:05:48 UTC

Import patches-applied version 2.4.27-2ubuntu3 to applied/ubuntu/bionic

Imported using git-ubuntu import.

Changelog parent: 6ef084d5c72cfc26e47be7658019e57d3737a17c
Unapplied parent: 1fdede6a5f8123fa69c1aa6a763639460c885f10

applied/ubuntu/bionic 2017-10-24 21:55:24 UTC 2017-10-24
Import patches-applied version 2.4.27-2ubuntu3 to applied/ubuntu/bionic

Author: Marc Deslauriers
Author Date: 2017-09-18 15:05:48 UTC

Import patches-applied version 2.4.27-2ubuntu3 to applied/ubuntu/bionic

Imported using git-ubuntu import.

Changelog parent: 6ef084d5c72cfc26e47be7658019e57d3737a17c
Unapplied parent: 1fdede6a5f8123fa69c1aa6a763639460c885f10

importer/debian/pristine-tar 2017-10-23 22:38:46 UTC 2017-10-23
pristine-tar data for apache2_2.4.29.orig.tar.gz

Author: Ubuntu Git Importer
Author Date: 2017-10-23 22:38:46 UTC

pristine-tar data for apache2_2.4.29.orig.tar.gz

importer/debian/dsc 2017-10-23 22:36:25 UTC 2017-10-23
DSC file for 2.4.29-1

Author: Ubuntu Git Importer
Author Date: 2017-10-23 22:36:25 UTC

DSC file for 2.4.29-1

debian/sid 2017-10-23 22:29:03 UTC 2017-10-23
Import patches-unapplied version 2.4.29-1 to debian/sid

Author: Ondřej Surý
Author Date: 2017-10-23 14:46:55 UTC

Import patches-unapplied version 2.4.29-1 to debian/sid

Imported using git-ubuntu import.

Publish parent: 0219d8ec42fd38bbeffb5066481d1decfd8d45ad

New changelog entries:
  [ Stefan Fritsch ]
  * Replace outdated dependency on dh-systemd
  [ Ondřej Surý ]
  * New upstream version 2.4.29
  * Refresh quilt patches
  * Add mod_ssl_md patch needed for libapache2-mod-md (Closes: #877343)
  * Refresh patches on top of upstream release 2.4.29
  * Fix Apache crash on restarts (ASF Bug 61558)
  * Add deconfigure to the list of recognized scripts (Closes: #877524)

applied/debian/sid 2017-10-23 22:29:03 UTC 2017-10-23
Import patches-applied version 2.4.29-1 to applied/debian/sid

Author: Ondřej Surý
Author Date: 2017-10-23 14:46:55 UTC

Import patches-applied version 2.4.29-1 to applied/debian/sid

Imported using git-ubuntu import.

Publish parent: a5272c284216660e4cf38bbabf14db7d351cbe58
Unapplied parent: 8a892893bee62f4e4e13bd149f6183df38ca42f7

New changelog entries:
  [ Stefan Fritsch ]
  * Replace outdated dependency on dh-systemd
  [ Ondřej Surý ]
  * New upstream version 2.4.29
  * Refresh quilt patches
  * Add mod_ssl_md patch needed for libapache2-mod-md (Closes: #877343)
  * Refresh patches on top of upstream release 2.4.29
  * Fix Apache crash on restarts (ASF Bug 61558)
  * Add deconfigure to the list of recognized scripts (Closes: #877524)

debian/stretch 2017-10-07 10:43:34 UTC 2017-10-07
Import patches-unapplied version 2.4.25-3+deb9u3 to debian/stretch

Author: Salvatore Bonaccorso
Author Date: 2017-09-19 18:58:57 UTC

Import patches-unapplied version 2.4.25-3+deb9u3 to debian/stretch

Imported using git-ubuntu import.

Publish parent: 87c1a54be4fda92e9f6a8526f4aec8412be8a5c1

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * CVE-2017-9798: Use-after-free by limiting unregistered HTTP method
    (Closes: #876109)
  * CVE-2017-9788: mod_auth_digest: Fix leak of uninitialized memory

applied/debian/stretch 2017-10-07 10:43:34 UTC 2017-10-07
Import patches-applied version 2.4.25-3+deb9u3 to applied/debian/stretch

Author: Salvatore Bonaccorso
Author Date: 2017-09-19 18:58:57 UTC

Import patches-applied version 2.4.25-3+deb9u3 to applied/debian/stretch

Imported using git-ubuntu import.

Publish parent: 5d648a683713c31339e9de6f686ffba3350c9ed4
Unapplied parent: e4947491d2ab59deb5f11f3115bb7fe4417d4989

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * CVE-2017-9798: Use-after-free by limiting unregistered HTTP method
    (Closes: #876109)
  * CVE-2017-9788: mod_auth_digest: Fix leak of uninitialized memory

importer/ubuntu/dsc 2017-09-24 04:33:28 UTC 2017-09-24
DSC file for 2.4.18-2ubuntu3.5

Author: Ubuntu Git Importer
Author Date: 2017-09-24 04:33:28 UTC

DSC file for 2.4.18-2ubuntu3.5

applied/ubuntu/artful 2017-09-21 19:24:47 UTC 2017-09-21
Import patches-applied version 2.4.27-2ubuntu3 to applied/ubuntu/artful

Author: Marc Deslauriers
Author Date: 2017-09-18 15:05:48 UTC

Import patches-applied version 2.4.27-2ubuntu3 to applied/ubuntu/artful

Imported using git-ubuntu import.

Publish parent: abd0822b654b368f5836a119555e4c8aeef89d2e
Changelog parent: 6ef084d5c72cfc26e47be7658019e57d3737a17c
Unapplied parent: 1fdede6a5f8123fa69c1aa6a763639460c885f10

ubuntu/artful 2017-09-21 19:24:47 UTC 2017-09-21
Import patches-unapplied version 2.4.27-2ubuntu3 to ubuntu/artful

Author: Marc Deslauriers
Author Date: 2017-09-18 15:05:48 UTC

Import patches-unapplied version 2.4.27-2ubuntu3 to ubuntu/artful

Imported using git-ubuntu import.

Publish parent: 24fb381a0fc623093978820cbe9894aadbaf7a12
Changelog parent: 1fdede6a5f8123fa69c1aa6a763639460c885f10

ubuntu/trusty-updates 2017-09-19 18:39:23 UTC 2017-09-19
Import patches-unapplied version 2.4.7-1ubuntu4.18 to ubuntu/trusty-updates

Author: Marc Deslauriers
Author Date: 2017-09-18 15:10:30 UTC

Import patches-unapplied version 2.4.7-1ubuntu4.18 to ubuntu/trusty-updates

Imported using git-ubuntu import.

Publish parent: d7ba2547892b5ed81ceee6d3e6c60c50a5a4a75b
Changelog parent: 01741ae81f7ef35969a3545c2ed26593c25e0910

applied/ubuntu/zesty-updates 2017-09-19 18:39:23 UTC 2017-09-19
Import patches-applied version 2.4.25-3ubuntu2.3 to applied/ubuntu/zesty-updates

Author: Marc Deslauriers
Author Date: 2017-09-18 15:08:28 UTC

Import patches-applied version 2.4.25-3ubuntu2.3 to applied/ubuntu/zesty-updates

Imported using git-ubuntu import.

Publish parent: 5bac0f2e0f3dd09bd6fd5a0aea74318672f99dbc
Changelog parent: 19dba42b9842d64b5a358c554f014c885ac2c645
Unapplied parent: 3765271adc9020a382d65ba5d10a2c7acdb11816

ubuntu/zesty-updates 2017-09-19 18:39:23 UTC 2017-09-19
Import patches-unapplied version 2.4.25-3ubuntu2.3 to ubuntu/zesty-updates

Author: Marc Deslauriers
Author Date: 2017-09-18 15:08:28 UTC

Import patches-unapplied version 2.4.25-3ubuntu2.3 to ubuntu/zesty-updates

Imported using git-ubuntu import.

Publish parent: 6a8f53e5fca076a59bd8eda343e83f4131f788d3
Changelog parent: 3765271adc9020a382d65ba5d10a2c7acdb11816

ubuntu/xenial-updates 2017-09-19 18:39:23 UTC 2017-09-19
Import patches-unapplied version 2.4.18-2ubuntu3.5 to ubuntu/xenial-updates

Author: Marc Deslauriers
Author Date: 2017-09-18 15:09:02 UTC

Import patches-unapplied version 2.4.18-2ubuntu3.5 to ubuntu/xenial-updates

Imported using git-ubuntu import.

Publish parent: 869a7bc0b34b46898cca39ce6efcf673d197b571
Changelog parent: 54ea56e1ceb2df6cc53500fa1a011d8639a9f672

applied/ubuntu/trusty-updates 2017-09-19 18:39:23 UTC 2017-09-19
Import patches-applied version 2.4.7-1ubuntu4.18 to applied/ubuntu/trusty-upd...

Author: Marc Deslauriers
Author Date: 2017-09-18 15:10:30 UTC

Import patches-applied version 2.4.7-1ubuntu4.18 to applied/ubuntu/trusty-updates

Imported using git-ubuntu import.

Publish parent: 02b6f36528c7348f8dad3006a0a55de846cf80e9
Changelog parent: 0ed532719dfc02563d7d912aa4e0f4bc98b23015
Unapplied parent: 01741ae81f7ef35969a3545c2ed26593c25e0910

applied/ubuntu/xenial-updates 2017-09-19 18:39:23 UTC 2017-09-19
Import patches-applied version 2.4.18-2ubuntu3.5 to applied/ubuntu/xenial-upd...

Author: Marc Deslauriers
Author Date: 2017-09-18 15:09:02 UTC

Import patches-applied version 2.4.18-2ubuntu3.5 to applied/ubuntu/xenial-updates

Imported using git-ubuntu import.

Publish parent: 5c861878afdc1aa17f2892421fa42d5c0593ca68
Changelog parent: f8a1e6b9e608b65bb65a2f7656769b62de61f9bb
Unapplied parent: 54ea56e1ceb2df6cc53500fa1a011d8639a9f672

ubuntu/trusty-devel 2017-09-19 17:24:04 UTC 2017-09-19
Update ubuntu/trusty-devel from 2.4.7-1ubuntu4.17 to 2.4.7-1ubuntu4.18

Author: Marc Deslauriers
Author Date: 2017-09-18 15:10:30 UTC

Update ubuntu/trusty-devel from 2.4.7-1ubuntu4.17 to 2.4.7-1ubuntu4.18

Prior ubuntu/trusty-devel commit: 6bee0dc05c441aed8777786255650af765cc397c
New ubuntu/trusty-devel commit: 01741ae81f7ef35969a3545c2ed26593c25e0910

applied/ubuntu/trusty-devel 2017-09-19 17:24:04 UTC 2017-09-19
Update ubuntu/trusty-devel from 2.4.7-1ubuntu4.17 to 2.4.7-1ubuntu4.18

Author: Marc Deslauriers
Author Date: 2017-09-18 15:10:30 UTC

Update ubuntu/trusty-devel from 2.4.7-1ubuntu4.17 to 2.4.7-1ubuntu4.18

Prior ubuntu/trusty-devel commit: 17e7b1406ceee9c338a8453b9282503db83f9f7f
New ubuntu/trusty-devel commit: 0ed532719dfc02563d7d912aa4e0f4bc98b23015

applied/ubuntu/trusty-security 2017-09-19 17:24:04 UTC 2017-09-19
Import patches-applied version 2.4.7-1ubuntu4.18 to applied/ubuntu/trusty-sec...

Author: Marc Deslauriers
Author Date: 2017-09-18 15:10:30 UTC

Import patches-applied version 2.4.7-1ubuntu4.18 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Publish parent: cdfd888ff0e7d32f8f9f354a8d4b048954e005aa
Unapplied parent: 01741ae81f7ef35969a3545c2ed26593c25e0910

New changelog entries:
  * SECURITY UPDATE: optionsbleed information leak
    - debian/patches/CVE-2017-9798.patch: disallow method registration
      at run time in server/core.c.
    - CVE-2017-9798

applied/ubuntu/xenial-devel 2017-09-19 17:24:04 UTC 2017-09-19
Update ubuntu/xenial-devel from 2.4.18-2ubuntu3.4 to 2.4.18-2ubuntu3.5

Author: Marc Deslauriers
Author Date: 2017-09-18 15:09:02 UTC

Update ubuntu/xenial-devel from 2.4.18-2ubuntu3.4 to 2.4.18-2ubuntu3.5

Prior ubuntu/xenial-devel commit: 43eaf39c87756a84d763d4cc1da95a6412d90232
New ubuntu/xenial-devel commit: f8a1e6b9e608b65bb65a2f7656769b62de61f9bb

applied/ubuntu/xenial-security 2017-09-19 17:24:04 UTC 2017-09-19
Import patches-applied version 2.4.18-2ubuntu3.5 to applied/ubuntu/xenial-sec...

Author: Marc Deslauriers
Author Date: 2017-09-18 15:09:02 UTC

Import patches-applied version 2.4.18-2ubuntu3.5 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Publish parent: ea9e02b533f76d3d32c1ddec67187bc8d0aa4fa6
Unapplied parent: 54ea56e1ceb2df6cc53500fa1a011d8639a9f672

New changelog entries:
  * SECURITY UPDATE: optionsbleed information leak
    - debian/patches/CVE-2017-9798.patch: disallow method registration
      at run time in server/core.c.
    - CVE-2017-9798

applied/ubuntu/zesty-devel 2017-09-19 17:24:04 UTC 2017-09-19
Update ubuntu/zesty-devel from 2.4.25-3ubuntu2.2 to 2.4.25-3ubuntu2.3

Author: Marc Deslauriers
Author Date: 2017-09-18 15:08:28 UTC

Update ubuntu/zesty-devel from 2.4.25-3ubuntu2.2 to 2.4.25-3ubuntu2.3

Prior ubuntu/zesty-devel commit: 93205a8dcb5b2a4589f3fe54ae79e1b50f4bdf46
New ubuntu/zesty-devel commit: 19dba42b9842d64b5a358c554f014c885ac2c645

applied/ubuntu/zesty-security 2017-09-19 17:24:04 UTC 2017-09-19
Import patches-applied version 2.4.25-3ubuntu2.3 to applied/ubuntu/zesty-secu...

Author: Marc Deslauriers
Author Date: 2017-09-18 15:08:28 UTC

Import patches-applied version 2.4.25-3ubuntu2.3 to applied/ubuntu/zesty-security

Imported using git-ubuntu import.

Publish parent: f0878881de829660d9869e0dc6ff697966dec444
Unapplied parent: 3765271adc9020a382d65ba5d10a2c7acdb11816

New changelog entries:
  * SECURITY UPDATE: optionsbleed information leak
    - debian/patches/CVE-2017-9798.patch: disallow method registration
      at run time in server/core.c.
    - CVE-2017-9798

ubuntu/trusty-security 2017-09-19 17:24:04 UTC 2017-09-19
Import patches-unapplied version 2.4.7-1ubuntu4.18 to ubuntu/trusty-security

Author: Marc Deslauriers
Author Date: 2017-09-18 15:10:30 UTC

Import patches-unapplied version 2.4.7-1ubuntu4.18 to ubuntu/trusty-security

Imported using git-ubuntu import.

Publish parent: 5c77b9791c50b4881f0e9145608828b5c29c1965

New changelog entries:
  * SECURITY UPDATE: optionsbleed information leak
    - debian/patches/CVE-2017-9798.patch: disallow method registration
      at run time in server/core.c.
    - CVE-2017-9798

ubuntu/xenial-devel 2017-09-19 17:24:04 UTC 2017-09-19
Update ubuntu/xenial-devel from 2.4.18-2ubuntu3.4 to 2.4.18-2ubuntu3.5

Author: Marc Deslauriers
Author Date: 2017-09-18 15:09:02 UTC

Update ubuntu/xenial-devel from 2.4.18-2ubuntu3.4 to 2.4.18-2ubuntu3.5

Prior ubuntu/xenial-devel commit: c313655d63cf6df5b32cf3a81a34a30be8cced92
New ubuntu/xenial-devel commit: 54ea56e1ceb2df6cc53500fa1a011d8639a9f672

ubuntu/xenial-security 2017-09-19 17:24:04 UTC 2017-09-19
Import patches-unapplied version 2.4.18-2ubuntu3.5 to ubuntu/xenial-security

Author: Marc Deslauriers
Author Date: 2017-09-18 15:09:02 UTC

Import patches-unapplied version 2.4.18-2ubuntu3.5 to ubuntu/xenial-security

Imported using git-ubuntu import.

Publish parent: a5d6857e1d1c3365cdf32d2685ab20f4411a16d1

New changelog entries:
  * SECURITY UPDATE: optionsbleed information leak
    - debian/patches/CVE-2017-9798.patch: disallow method registration
      at run time in server/core.c.
    - CVE-2017-9798

ubuntu/zesty-devel 2017-09-19 17:24:04 UTC 2017-09-19
Update ubuntu/zesty-devel from 2.4.25-3ubuntu2.2 to 2.4.25-3ubuntu2.3

Author: Marc Deslauriers
Author Date: 2017-09-18 15:08:28 UTC

Update ubuntu/zesty-devel from 2.4.25-3ubuntu2.2 to 2.4.25-3ubuntu2.3

Prior ubuntu/zesty-devel commit: 3512b367cb2235177a6afb2bca6965fd368565c1
New ubuntu/zesty-devel commit: 3765271adc9020a382d65ba5d10a2c7acdb11816

ubuntu/zesty-security 2017-09-19 17:24:04 UTC 2017-09-19
Import patches-unapplied version 2.4.25-3ubuntu2.3 to ubuntu/zesty-security

Author: Marc Deslauriers
Author Date: 2017-09-18 15:08:28 UTC

Import patches-unapplied version 2.4.25-3ubuntu2.3 to ubuntu/zesty-security

Imported using git-ubuntu import.

Publish parent: d8606119c5b0ccb2f17c451f40450aa20f261d9e

New changelog entries:
  * SECURITY UPDATE: optionsbleed information leak
    - debian/patches/CVE-2017-9798.patch: disallow method registration
      at run time in server/core.c.
    - CVE-2017-9798

applied/ubuntu/devel 2017-09-18 16:54:16 UTC 2017-09-18
Update ubuntu/devel from 2.4.27-2ubuntu2 to 2.4.27-2ubuntu3

Author: Marc Deslauriers
Author Date: 2017-09-18 15:05:48 UTC

Update ubuntu/devel from 2.4.27-2ubuntu2 to 2.4.27-2ubuntu3

Prior ubuntu/devel commit: 7e50d5e641640fb41dd5b922d5072f524e452e9c
New ubuntu/devel commit: 6ef084d5c72cfc26e47be7658019e57d3737a17c

applied/ubuntu/artful-proposed 2017-09-18 16:54:16 UTC 2017-09-18
Import patches-applied version 2.4.27-2ubuntu3 to applied/ubuntu/artful-proposed

Author: Marc Deslauriers
Author Date: 2017-09-18 15:05:48 UTC

Import patches-applied version 2.4.27-2ubuntu3 to applied/ubuntu/artful-proposed

Imported using git-ubuntu import.

Publish parent: d0eb17bdac7241715a4080c9b57beeda0bdd12a7
Unapplied parent: 1fdede6a5f8123fa69c1aa6a763639460c885f10

New changelog entries:
  * SECURITY UPDATE: optionsbleed information leak
    - debian/patches/CVE-2017-9798.patch: disallow method registration
      at run time in server/core.c.
    - CVE-2017-9798

ubuntu/artful-devel 2017-09-18 16:54:16 UTC 2017-09-18
Update ubuntu/artful-devel from 2.4.27-2ubuntu2 to 2.4.27-2ubuntu3

Author: Marc Deslauriers
Author Date: 2017-09-18 15:05:48 UTC

Update ubuntu/artful-devel from 2.4.27-2ubuntu2 to 2.4.27-2ubuntu3

Prior ubuntu/artful-devel commit: 48d4fb05ce06cd9e32f8b19313babb57c0b661aa
New ubuntu/artful-devel commit: 1fdede6a5f8123fa69c1aa6a763639460c885f10

ubuntu/artful-proposed 2017-09-18 16:54:16 UTC 2017-09-18
Import patches-unapplied version 2.4.27-2ubuntu3 to ubuntu/artful-proposed

Author: Marc Deslauriers
Author Date: 2017-09-18 15:05:48 UTC

Import patches-unapplied version 2.4.27-2ubuntu3 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Publish parent: 5da46a8d8c93dcbc28aefaf1a9bc8faa686896f4

New changelog entries:
  * SECURITY UPDATE: optionsbleed information leak
    - debian/patches/CVE-2017-9798.patch: disallow method registration
      at run time in server/core.c.
    - CVE-2017-9798

ubuntu/devel 2017-09-18 16:54:16 UTC 2017-09-18
Update ubuntu/devel from 2.4.27-2ubuntu2 to 2.4.27-2ubuntu3

Author: Marc Deslauriers
Author Date: 2017-09-18 15:05:48 UTC

Update ubuntu/devel from 2.4.27-2ubuntu2 to 2.4.27-2ubuntu3

Prior ubuntu/devel commit: 66a28a2719f3210d077e5a966f05e65e3ed1e49e
New ubuntu/devel commit: 1fdede6a5f8123fa69c1aa6a763639460c885f10

applied/ubuntu/artful-devel 2017-09-18 16:54:16 UTC 2017-09-18
Update ubuntu/artful-devel from 2.4.27-2ubuntu2 to 2.4.27-2ubuntu3

Author: Marc Deslauriers
Author Date: 2017-09-18 15:05:48 UTC

Update ubuntu/artful-devel from 2.4.27-2ubuntu2 to 2.4.27-2ubuntu3

Prior ubuntu/artful-devel commit: d43b40608312744c68942224611745de4ade8925
New ubuntu/artful-devel commit: 6ef084d5c72cfc26e47be7658019e57d3737a17c

importer/ubuntu/pristine-tar 2017-08-09 04:51:23 UTC 2017-08-09
pristine-tar data for apache2_2.4.27.orig.tar.bz2

Author: Ubuntu Git Importer
Author Date: 2017-08-09 04:51:23 UTC

pristine-tar data for apache2_2.4.27.orig.tar.bz2

applied/debian/experimental 2017-08-09 04:27:50 UTC 2017-08-09
Import patches-applied version 2.4.27-4 to applied/debian/experimental

Author: Stefan Fritsch
Author Date: 2017-08-08 19:59:37 UTC

Import patches-applied version 2.4.27-4 to applied/debian/experimental

Imported using git-ubuntu import.

Publish parent: 042d986bd388ce17f56e76f9624db5aff988da52
Unapplied parent: 62e9e05de6918f851092a2f7604884282c58f0ba

New changelog entries:
  * Use 'invoke-rc.d' instead of init script in logrotate script.
    Closes: #857607
  * Make the apache-htcacheclean init script actually look into
    /etc/default/apache-htcacheclean for its config. LP: #1691495
  * mime.conf: Guard AddOutputFilter INCLUDES with proper <IfModule>.
    LP: #1675184
  * Use 'service' instead of init script in monit example config.
  * Bump Standards-Version to 4.0.1. Other changes:
    - change package priorities from extra to optional
  * Use libprotocol-http2-perl in autopkgtest.
  * Update test suite to svn r1804214.
  * Various tweaks to the test suite autopkgtest to avoid having to skip
    any test.
  * Also remove -DBUILD_DATETIME and -fdebug-prefix-map from config_vars.mk
    to avoid them being used by apxs.
  * deflate.conf: Remove mention of MSIE6

debian/experimental 2017-08-09 04:27:50 UTC 2017-08-09
Import patches-unapplied version 2.4.27-4 to debian/experimental

Author: Stefan Fritsch
Author Date: 2017-08-08 19:59:37 UTC

Import patches-unapplied version 2.4.27-4 to debian/experimental

Imported using git-ubuntu import.

Publish parent: 8155f37a3056edbbe933adf3a9a3a6cab5b19df4

New changelog entries:
  * Use 'invoke-rc.d' instead of init script in logrotate script.
    Closes: #857607
  * Make the apache-htcacheclean init script actually look into
    /etc/default/apache-htcacheclean for its config. LP: #1691495
  * mime.conf: Guard AddOutputFilter INCLUDES with proper <IfModule>.
    LP: #1675184
  * Use 'service' instead of init script in monit example config.
  * Bump Standards-Version to 4.0.1. Other changes:
    - change package priorities from extra to optional
  * Use libprotocol-http2-perl in autopkgtest.
  * Update test suite to svn r1804214.
  * Various tweaks to the test suite autopkgtest to avoid having to skip
    any test.
  * Also remove -DBUILD_DATETIME and -fdebug-prefix-map from config_vars.mk
    to avoid them being used by apxs.
  * deflate.conf: Remove mention of MSIE6

debian/jessie 2017-07-22 17:16:39 UTC 2017-07-22
Import patches-unapplied version 2.4.10-10+deb8u9 to debian/jessie

Author: Stefan Fritsch
Author Date: 2017-06-20 19:02:39 UTC

Import patches-unapplied version 2.4.10-10+deb8u9 to debian/jessie

Imported using git-ubuntu import.

Publish parent: e4c51fdd7b4a7621f1bd5209e93fff088f4b5dd0

New changelog entries:
  * CVE-2017-3167: Authentication bypass with ap_get_basic_auth_pw()
  * CVE-2017-3169: mod_ssl NULL pointer dereference
  * CVE-2017-7668: Buffer overrun in ap_find_token()
  * CVE-2017-7679: mod_mime buffer overread

applied/debian/jessie 2017-07-22 17:16:39 UTC 2017-07-22
Import patches-applied version 2.4.10-10+deb8u9 to applied/debian/jessie

Author: Stefan Fritsch
Author Date: 2017-06-20 19:02:39 UTC

Import patches-applied version 2.4.10-10+deb8u9 to applied/debian/jessie

Imported using git-ubuntu import.

Publish parent: 92c32ffc93e2dac535d628d1ceda154447b623b7
Unapplied parent: 865e657a632d958f74870d983bcf23947dcf66c8

New changelog entries:
  * CVE-2017-3167: Authentication bypass with ap_get_basic_auth_pw()
  * CVE-2017-3169: mod_ssl NULL pointer dereference
  * CVE-2017-7668: Buffer overrun in ap_find_token()
  * CVE-2017-7679: mod_mime buffer overread

ubuntu/yakkety-updates 2017-06-26 17:33:31 UTC 2017-06-26
Import patches-unapplied version 2.4.18-2ubuntu4.2 to ubuntu/yakkety-updates

Author: Marc Deslauriers
Author Date: 2017-06-26 11:57:04 UTC

Import patches-unapplied version 2.4.18-2ubuntu4.2 to ubuntu/yakkety-updates

Imported using git-ubuntu import.

Publish parent: e6ee84d303e5c3022dc85b07a4a9b54505c346d1
Changelog parent: 967dea2bc67860866c9efc8f886add66b28e1551

applied/ubuntu/yakkety-updates 2017-06-26 17:33:31 UTC 2017-06-26
Import patches-applied version 2.4.18-2ubuntu4.2 to applied/ubuntu/yakkety-up...

Author: Marc Deslauriers
Author Date: 2017-06-26 11:57:04 UTC

Import patches-applied version 2.4.18-2ubuntu4.2 to applied/ubuntu/yakkety-updates

Imported using git-ubuntu import.

Publish parent: 5bddba45daa5b8fe94aac753edd847049ddfd8a0
Changelog parent: 5d07e0aa5c567838b1c85b8ad66124edf4268eb6
Unapplied parent: 967dea2bc67860866c9efc8f886add66b28e1551

ubuntu/yakkety-devel 2017-06-26 11:57:04 UTC 2017-06-26
Update ubuntu/yakkety-devel from 2.4.18-2ubuntu4.1 to 2.4.18-2ubuntu4.2

Author: Marc Deslauriers
Author Date: 2017-06-26 11:57:04 UTC

Update ubuntu/yakkety-devel from 2.4.18-2ubuntu4.1 to 2.4.18-2ubuntu4.2

Prior ubuntu/yakkety-devel commit: b1a6dffc870871c4dce7fdfa01038973e7ba3eda
New ubuntu/yakkety-devel commit: 967dea2bc67860866c9efc8f886add66b28e1551

applied/ubuntu/yakkety-security 2017-06-26 11:57:04 UTC 2017-06-26
Import patches-applied version 2.4.18-2ubuntu4.2 to applied/ubuntu/yakkety-se...

Author: Marc Deslauriers
Author Date: 2017-06-26 11:57:04 UTC

Import patches-applied version 2.4.18-2ubuntu4.2 to applied/ubuntu/yakkety-security

Imported using git-ubuntu import.

Publish parent: ce0680147dd945141309574a0952afebd7d26963
Unapplied parent: 967dea2bc67860866c9efc8f886add66b28e1551

New changelog entries:
  * SECURITY UPDATE: authentication bypass in ap_get_basic_auth_pw()
    - debian/patches/CVE-2017-3167.patch: deprecate and replace
      ap_get_basic_auth_pw in include/ap_mmn.h, include/http_protocol.h,
      server/protocol.c, server/request.c.
    - CVE-2017-3167
  * SECURITY UPDATE: NULL pointer deref in ap_hook_process_connection()
    - debian/patches/CVE-2017-3169.patch: fix ctx passed to
      ssl_io_filter_error() in modules/ssl/ssl_engine_io.c.
    - CVE-2017-3169
  * SECURITY UPDATE: denial of service and possible incorrect value return
    in HTTP strict parsing changes
    - debian/patches/CVE-2017-7668.patch: short-circuit on NULL in
      server/util.c.
    - CVE-2017-7668
  * SECURITY UPDATE: mod_mime DoS via crafted Content-Type response header
    - debian/patches/CVE-2017-7679.patch: fix quoted pair scanning in
      modules/http/mod_mime.c.
    - CVE-2017-7679

applied/ubuntu/yakkety-devel 2017-06-26 11:57:04 UTC 2017-06-26
Update ubuntu/yakkety-devel from 2.4.18-2ubuntu4.1 to 2.4.18-2ubuntu4.2

Author: Marc Deslauriers
Author Date: 2017-06-26 11:57:04 UTC

Update ubuntu/yakkety-devel from 2.4.18-2ubuntu4.1 to 2.4.18-2ubuntu4.2

Prior ubuntu/yakkety-devel commit: ce0680147dd945141309574a0952afebd7d26963
New ubuntu/yakkety-devel commit: 5d07e0aa5c567838b1c85b8ad66124edf4268eb6

ubuntu/yakkety-security 2017-06-26 11:57:04 UTC 2017-06-26
Import patches-unapplied version 2.4.18-2ubuntu4.2 to ubuntu/yakkety-security

Author: Marc Deslauriers
Author Date: 2017-06-26 11:57:04 UTC

Import patches-unapplied version 2.4.18-2ubuntu4.2 to ubuntu/yakkety-security

Imported using git-ubuntu import.

Publish parent: 91e44e4f7a4a5d695e6b80e3504abc74a519298e

New changelog entries:
  * SECURITY UPDATE: authentication bypass in ap_get_basic_auth_pw()
    - debian/patches/CVE-2017-3167.patch: deprecate and replace
      ap_get_basic_auth_pw in include/ap_mmn.h, include/http_protocol.h,
      server/protocol.c, server/request.c.
    - CVE-2017-3167
  * SECURITY UPDATE: NULL pointer deref in ap_hook_process_connection()
    - debian/patches/CVE-2017-3169.patch: fix ctx passed to
      ssl_io_filter_error() in modules/ssl/ssl_engine_io.c.
    - CVE-2017-3169
  * SECURITY UPDATE: denial of service and possible incorrect value return
    in HTTP strict parsing changes
    - debian/patches/CVE-2017-7668.patch: short-circuit on NULL in
      server/util.c.
    - CVE-2017-7668
  * SECURITY UPDATE: mod_mime DoS via crafted Content-Type response header
    - debian/patches/CVE-2017-7679.patch: fix quoted pair scanning in
      modules/http/mod_mime.c.
    - CVE-2017-7679

applied/ubuntu/zesty 2017-02-22 01:05:34 UTC 2017-02-22
Import patches-applied version 2.4.25-3ubuntu2 to applied/ubuntu/zesty

Author: Nish Aravamudan
Author Date: 2017-02-10 16:53:43 UTC

Import patches-applied version 2.4.25-3ubuntu2 to applied/ubuntu/zesty

Imported using git-ubuntu import.

Publish parent: ca27c5c2f4cd6731b141d3c1fc37ee41bd34cebb
Changelog parent: fff11620d0a7bedf4300f181bc2b30a85290f56a
Unapplied parent: e4ccb92b1f69fab50bbedd5082ab11eade4930a4

ubuntu/zesty 2017-02-22 01:05:34 UTC 2017-02-22
Import patches-unapplied version 2.4.25-3ubuntu2 to ubuntu/zesty

Author: Nish Aravamudan
Author Date: 2017-02-10 16:53:43 UTC

Import patches-unapplied version 2.4.25-3ubuntu2 to ubuntu/zesty

Imported using git-ubuntu import.

Publish parent: 425dbb6e7c6e46cd5cd5dd9e36c400b10bf12c43

ubuntu/zesty-proposed 2017-02-10 17:03:26 UTC 2017-02-10
Import patches-unapplied version 2.4.25-3ubuntu2 to ubuntu/zesty-proposed

Author: Nish Aravamudan
Author Date: 2017-02-10 16:53:43 UTC

Import patches-unapplied version 2.4.25-3ubuntu2 to ubuntu/zesty-proposed

Imported using usd-importer.

Upload parent: 140f83d094d675b2fed8560b517c8a4da37c5159

applied/ubuntu/zesty-proposed 2017-02-10 17:03:26 UTC 2017-02-10
Import patches-applied version 2.4.25-3ubuntu2 to applied/ubuntu/zesty-proposed

Author: Nish Aravamudan
Author Date: 2017-02-10 16:53:43 UTC

Import patches-applied version 2.4.25-3ubuntu2 to applied/ubuntu/zesty-proposed

Imported using git-ubuntu import.

Publish parent: 61bc2779297c24b6c0f2ca0f46052206476617ee
Unapplied parent: e4ccb92b1f69fab50bbedd5082ab11eade4930a4

New changelog entries:
  * Undrop (LP 1658469):
    - Don't build experimental http2 module for LTS:
      + debian/control: removed libnghttp2-dev Build-Depends (in universe).
      + debian/config-dir/mods-available/http2.load: removed.
      + debian/rules: removed proxy_http2 from configure.
      + debian/apache2.maintscript: remove http2 conffile.

ubuntu/trusty-backports 2016-08-31 16:24:27 UTC 2016-08-31
Import version 2.4.10-1ubuntu1.1~ubuntu14.04.2 to ubuntu/trusty-backports

Author: Mike Gerow
Author Date: 2016-07-21 21:53:00 UTC

Import version 2.4.10-1ubuntu1.1~ubuntu14.04.2 to ubuntu/trusty-backports

Imported using usd-importer.

New changelog entries:
  * CVE-2016-5387 (LP: #1604209)

ubuntu/trusty-proposed 2016-07-28 21:04:34 UTC 2016-07-28
Import version 2.4.7-1ubuntu4.14 to ubuntu/trusty-proposed

Author: Wesley Wiedenmeier
Author Date: 2016-07-21 00:07:41 UTC

Import version 2.4.7-1ubuntu4.14 to ubuntu/trusty-proposed

Imported using usd-importer.

New changelog entries:
  * d/p/fix_aliasmatch_long_uri.patch: Fix handling memory allocation for very
    long uri in alias match (LP: #1534538)

ubuntu/yakkety 2016-07-28 14:39:24 UTC 2016-07-28
Import version 2.4.18-2ubuntu4 to ubuntu/yakkety

Author: Marc Deslauriers
Author Date: 2016-07-18 18:32:02 UTC

Import version 2.4.18-2ubuntu4 to ubuntu/yakkety

Imported using usd-importer.

ubuntu/yakkety-proposed 2016-07-18 18:59:05 UTC 2016-07-18
Import version 2.4.18-2ubuntu4 to ubuntu/yakkety-proposed

Author: Marc Deslauriers
Author Date: 2016-07-18 18:32:02 UTC

Import version 2.4.18-2ubuntu4 to ubuntu/yakkety-proposed

Imported using usd-importer.

New changelog entries:
  * SECURITY UPDATE: proxy request header vulnerability (httpoxy)
    - debian/patches/CVE-2016-5387.patch: don't pass through HTTP_PROXY in
      server/util_script.c.
    - CVE-2016-5387

ubuntu/precise-devel 2016-07-18 18:59:05 UTC 2016-07-18
Import version 2.2.22-1ubuntu1.11 to ubuntu/precise-updates

Author: Marc Deslauriers
Author Date: 2016-07-14 12:50:27 UTC

Import version 2.2.22-1ubuntu1.11 to ubuntu/precise-updates

Imported using usd-importer.

ubuntu/wily-updates 2016-07-18 18:59:05 UTC 2016-07-18
Import version 2.4.12-2ubuntu2.1 to ubuntu/wily-updates

Author: Marc Deslauriers
Author Date: 2016-07-14 12:39:28 UTC

Import version 2.4.12-2ubuntu2.1 to ubuntu/wily-updates

Imported using usd-importer.

ubuntu/wily-devel 2016-07-18 18:59:05 UTC 2016-07-18
Import version 2.4.12-2ubuntu2.1 to ubuntu/wily-updates

Author: Marc Deslauriers
Author Date: 2016-07-14 12:39:28 UTC

Import version 2.4.12-2ubuntu2.1 to ubuntu/wily-updates

Imported using usd-importer.

ubuntu/precise-updates 2016-07-18 18:59:05 UTC 2016-07-18
Import version 2.2.22-1ubuntu1.11 to ubuntu/precise-updates

Author: Marc Deslauriers
Author Date: 2016-07-14 12:50:27 UTC

Import version 2.2.22-1ubuntu1.11 to ubuntu/precise-updates

Imported using usd-importer.

ubuntu/precise-security 2016-07-18 18:04:22 UTC 2016-07-18
Import version 2.2.22-1ubuntu1.11 to ubuntu/precise-security

Author: Marc Deslauriers
Author Date: 2016-07-14 12:50:27 UTC

Import version 2.2.22-1ubuntu1.11 to ubuntu/precise-security

Imported using usd-importer.

New changelog entries:
  * SECURITY UPDATE: proxy request header vulnerability (httpoxy)
    - debian/patches/CVE-2016-5387.patch: don't pass through HTTP_PROXY in
      server/util_script.c.
    - CVE-2016-5387
  * This update does _not_ contain the changes from (2.4.7-1ubuntu4.12) in
    trusty-proposed.

ubuntu/wily-security 2016-07-18 18:04:22 UTC 2016-07-18
Import version 2.4.12-2ubuntu2.1 to ubuntu/wily-security

Author: Marc Deslauriers
Author Date: 2016-07-14 12:39:28 UTC

Import version 2.4.12-2ubuntu2.1 to ubuntu/wily-security

Imported using usd-importer.

New changelog entries:
  * SECURITY UPDATE: proxy request header vulnerability (httpoxy)
    - debian/patches/CVE-2016-5387.patch: don't pass through HTTP_PROXY in
      server/util_script.c.
    - CVE-2016-5387

ubuntu/xenial 2016-04-16 08:08:56 UTC 2016-04-16
Import version 2.4.18-2ubuntu3 to ubuntu/xenial

Author: Robie Basak
Author Date: 2016-04-15 18:00:57 UTC

Import version 2.4.18-2ubuntu3 to ubuntu/xenial

Imported using usd-importer.

ubuntu/xenial-proposed 2016-04-15 18:34:03 UTC 2016-04-15
Import version 2.4.18-2ubuntu3 to ubuntu/xenial-proposed

Author: Robie Basak
Author Date: 2016-04-15 18:00:57 UTC

Import version 2.4.18-2ubuntu3 to ubuntu/xenial-proposed

Imported using usd-importer.

New changelog entries:
  [ Ryan Harper ]
  * Drop /etc/apache2/mods-available/http2.load. This was inadvertently
    introduced in 2.4.18-2ubuntu1. The intention is to not carry this at
    all, since http2 support is intentionally disabled (see LP 1531864).
  * d/apache2.maintscript: handle removal of http2.load conffile.
  [ Robie Basak ]
  * Re-write Ryan's changelog entry.

debian/wheezy 2015-09-05 16:51:01 UTC 2015-09-05
Import version 2.2.22-13+deb7u6 to debian/wheezy

Author: Stefan Fritsch
Author Date: 2015-08-18 09:41:11 UTC

Import version 2.2.22-13+deb7u6 to debian/wheezy

Imported using usd-importer.

New changelog entries:
  * Fix regression causing spurious errors when loading certificate chain.
    Closes: #794383
  * CVE-2015-3183: Fix request smuggling via chunked transfer encoding.
    Backported by Marc Deslauriers.
  * Don't limit default DH parameters to 1024 bits. Closes: #780398
    This may cause problems with some Java based clients. A work-around is to
    configure these client not to use DHE key exchange but use ECDHE or RSA
    instead.
    A server-side work-around that limits the DH parameters to 1024 bits for
    all clients is described at
    http://httpd.apache.org/docs/trunk/ssl/ssl_faq.html#javadh .
  * Backport support for adding DH parameters to the SSLCertificateFile.

ubuntu/wily 2015-07-28 06:38:39 UTC 2015-07-28
Import version 2.4.12-2ubuntu2 to ubuntu/wily

Author: Marc Deslauriers
Author Date: 2015-07-24 13:56:09 UTC

Import version 2.4.12-2ubuntu2 to ubuntu/wily

Imported using usd-importer.

ubuntu/vivid-devel 2015-07-27 18:03:27 UTC 2015-07-27
Import version 2.4.10-9ubuntu1.1 to ubuntu/vivid-updates

Author: Marc Deslauriers
Author Date: 2015-07-24 16:25:41 UTC

Import version 2.4.10-9ubuntu1.1 to ubuntu/vivid-updates

Imported using usd-importer.

ubuntu/vivid-updates 2015-07-27 18:03:27 UTC 2015-07-27
Import version 2.4.10-9ubuntu1.1 to ubuntu/vivid-updates

Author: Marc Deslauriers
Author Date: 2015-07-24 16:25:41 UTC

Import version 2.4.10-9ubuntu1.1 to ubuntu/vivid-updates

Imported using usd-importer.

ubuntu/vivid-security 2015-07-27 17:43:37 UTC 2015-07-27
Import version 2.4.10-9ubuntu1.1 to ubuntu/vivid-security

Author: Marc Deslauriers
Author Date: 2015-07-24 16:25:41 UTC

Import version 2.4.10-9ubuntu1.1 to ubuntu/vivid-security

Imported using usd-importer.

New changelog entries:
  * SECURITY UPDATE: request smuggling via chunked transfer encoding
    - debian/patches/CVE-2015-3183.patch: refactor chunk parsing in
      modules/http/http_filters.c.
    - CVE-2015-3183
  * SECURITY UPDATE: access restriction bypass via deprecated API
    - debian/patches/CVE-2015-3185.patch: deprecate old API and add new one
      in include/http_request.h, server/request.c.
    - CVE-2015-3185

ubuntu/wily-proposed 2015-07-24 16:13:34 UTC 2015-07-24
Import version 2.4.12-2ubuntu2 to ubuntu/wily-proposed

Author: Marc Deslauriers
Author Date: 2015-07-24 13:56:09 UTC

Import version 2.4.12-2ubuntu2 to ubuntu/wily-proposed

Imported using usd-importer.

New changelog entries:
  * SECURITY UPDATE: request smuggling via chunked transfer encoding
    - debian/patches/CVE-2015-3183.patch: refactor chunk parsing in
      modules/http/http_filters.c.
    - CVE-2015-3183
  * SECURITY UPDATE: access restriction bypass via deprecated API
    - debian/patches/CVE-2015-3185.patch: deprecate old API and add new one
      in include/http_request.h, server/request.c.
    - CVE-2015-3185

ubuntu/lucid-updates 2015-03-10 15:38:34 UTC 2015-03-10
Import version 2.2.14-5ubuntu8.15 to ubuntu/lucid-updates

Author: Marc Deslauriers
Author Date: 2015-03-05 17:45:09 UTC

Import version 2.2.14-5ubuntu8.15 to ubuntu/lucid-updates

Imported using usd-importer.

ubuntu/utopic-updates 2015-03-10 15:38:34 UTC 2015-03-10
Import version 2.4.10-1ubuntu1.1 to ubuntu/utopic-updates

Author: Marc Deslauriers
Author Date: 2015-03-05 17:05:47 UTC

Import version 2.4.10-1ubuntu1.1 to ubuntu/utopic-updates

Imported using usd-importer.

ubuntu/utopic-security 2015-03-10 14:38:10 UTC 2015-03-10
Import version 2.4.10-1ubuntu1.1 to ubuntu/utopic-security

Author: Marc Deslauriers
Author Date: 2015-03-05 17:05:47 UTC

Import version 2.4.10-1ubuntu1.1 to ubuntu/utopic-security

Imported using usd-importer.

New changelog entries:
  * SECURITY UPDATE: HTTP header replacement via HTTP trailers (LP: #1425141)
    - debian/patches/CVE-2013-5704.patch: don't merge trailers by default
      and add a "MergeTrailers" directive to revert to previous behaviour
      to include/http_core.h, include/httpd.h, modules/http/http_filters.c,
      modules/http/http_request.c, modules/loggers/mod_log_config.c,
      modules/proxy/mod_proxy_http.c, server/core.c, server/protocol.c.
    - CVE-2013-5704
  * SECURITY UPDATE: mod_cache denial of service via empty HTTP
    Content-Type header
    - debian/patches/CVE-2014-3581.patch: check for NULL in
      modules/cache/cache_util.c.
    - CVE-2014-3581
  * SECURITY UPDATE: mod_proxy_fcgi deial of service via long response
    headers
    - debian/patches/CVE-2014-3583.patch: properly handle length in
      modules/aaa/mod_authnz_fcgi.c, modules/proxy/mod_proxy_fcgi.c.
    - CVE-2014-3583
  * SECURITY UPDATE: restriction bypass in mod_lua via multiple Require
    directives
    - debian/patches/CVE-2014-8109.patch: handle multiple Require
      directives with different arguments in modules/lua/mod_lua.c.
    - CVE-2014-8109
  * SECURITY UPDATE: denial of service in mod_lua via websockets PING
    - debian/patches/CVE-2015-0228.patch: fix logic in
      modules/lua/lua_request.c.
    - CVE-2015-0228

ubuntu/lucid-security 2015-03-10 14:38:10 UTC 2015-03-10
Import version 2.2.14-5ubuntu8.15 to ubuntu/lucid-security

Author: Marc Deslauriers
Author Date: 2015-03-05 17:45:09 UTC

Import version 2.2.14-5ubuntu8.15 to ubuntu/lucid-security

Imported using usd-importer.

New changelog entries:
  * SECURITY UPDATE: HTTP header replacement via HTTP trailers (LP: #1425141)
    - debian/patches/CVE-2013-5704.dpatch: don't merge trailers by default
      and add a "MergeTrailers" directive to revert to previous behaviour
      to include/http_core.h, include/httpd.h, modules/http/http_filters.c,
      modules/http/http_request.c, modules/loggers/mod_log_config.c,
      modules/proxy/mod_proxy_http.c, modules/proxy/proxy_util.c,
      server/core.c, server/protocol.c.
    - CVE-2013-5704

ubuntu/vivid 2015-03-09 13:28:34 UTC 2015-03-09
Import version 2.4.10-9ubuntu1 to ubuntu/vivid

Author: Martin Pitt
Author Date: 2015-03-09 11:03:16 UTC

Import version 2.4.10-9ubuntu1 to ubuntu/vivid

Imported using usd-importer.

ubuntu/vivid-proposed 2015-03-09 11:58:35 UTC 2015-03-09
Import version 2.4.10-9ubuntu1 to ubuntu/vivid-proposed

Author: Martin Pitt
Author Date: 2015-03-09 11:03:16 UTC

Import version 2.4.10-9ubuntu1 to ubuntu/vivid-proposed

Imported using usd-importer.

New changelog entries:
  * Merge from Debian unstable. Remaining changes:
    - debian/{control, apache2.install, apache2-utils.ufw.profile,
      apache2.dirs}: Add ufw profiles.
    - debian/apache2.py, debian/apache2-bin.install: Add apport hook.
    - d/control, d/config-dir/mods-available/ssl.conf,
    - Add dep8 tests.
    - debian/rules: Fix cross-building by passing
      DEB_{HOST,BUILD}_GNU_TYPE to configure.
    - debian/patches/086_svn_cross_compiles: Backport several cross
      fixes from upstream
    - d/index.html: replace Debian with Ubuntu on default page.
    - d/p/split-logfile.patch: fix completely broken split-logfile
      command.
    - d/p/CVE-2015-0228.patch: fix logic in modules/lua/lua_request.c to fix a
      denial of service in mod_lua via websockets PING
  * debian/tests/ssl-passphrase: Add password responder for
    systemd-ask-passphrase.

ubuntu/utopic 2014-07-25 13:13:42 UTC 2014-07-25
Import version 2.4.10-1ubuntu1 to ubuntu/utopic

Author: Robie Basak
Author Date: 2014-07-24 15:13:16 UTC

Import version 2.4.10-1ubuntu1 to ubuntu/utopic

Imported using usd-importer.

ubuntu/utopic-proposed 2014-07-25 10:28:24 UTC 2014-07-25
Import version 2.4.10-1ubuntu1 to ubuntu/utopic-proposed

Author: Robie Basak
Author Date: 2014-07-24 15:13:16 UTC

Import version 2.4.10-1ubuntu1 to ubuntu/utopic-proposed

Imported using usd-importer.

New changelog entries:
  * Merge from Debian unstable. Remaining changes:
    - debian/{control, apache2.install, apache2-utils.ufw.profile,
      apache2.dirs}: Add ufw profiles.
    - debian/apache2.py, debian/apache2-bin.install: Add apport hook.
    - d/control, d/config-dir/mods-available/ssl.conf, d/ask-for-passphrase,
      d/apache2.install: Plymouth aware passphrase dialog program
      ask-for-passphrase.
    - Add dep8 tests.
    - debian/rules: Fix cross-building by passing DEB_{HOST,BUILD}_GNU_TYPE to
      configure.
    - debian/patches/086_svn_cross_compiles: Backport several cross fixes from
      upstream
    - d/index.html: replace Debian with Ubuntu on default page.
    - d/p/split-logfile.patch: fix completely broken split-logfile command.

ubuntu/precise-proposed 2014-04-17 21:53:14 UTC 2014-04-17
Import version 2.2.22-1ubuntu1.6 to ubuntu/precise-proposed

Author: Ritesh Khadgaray
Author Date: 2014-03-27 09:36:16 UTC

Import version 2.2.22-1ubuntu1.6 to ubuntu/precise-proposed

Imported using usd-importer.

New changelog entries:
  * debian/patches/sni.patch:
    - apache2 doesn't compare SNI hostname against Host header
      case-insensitively (lp: #1298273)

ubuntu/trusty 2014-04-03 13:33:16 UTC 2014-04-03
Import version 2.4.7-1ubuntu4 to ubuntu/trusty

Author: Robie Basak
Author Date: 2014-04-03 11:21:22 UTC

Import version 2.4.7-1ubuntu4 to ubuntu/trusty

Imported using usd-importer.

ubuntu/saucy-updates 2014-03-24 19:08:29 UTC 2014-03-24
Import version 2.4.6-2ubuntu2.2 to ubuntu/saucy-updates

Author: Marc Deslauriers
Author Date: 2014-03-19 19:32:18 UTC

Import version 2.4.6-2ubuntu2.2 to ubuntu/saucy-updates

Imported using usd-importer.

ubuntu/quantal-updates 2014-03-24 19:08:29 UTC 2014-03-24
Import version 2.2.22-6ubuntu2.4 to ubuntu/quantal-updates

Author: Marc Deslauriers
Author Date: 2014-03-19 19:38:47 UTC

Import version 2.2.22-6ubuntu2.4 to ubuntu/quantal-updates

Imported using usd-importer.

ubuntu/quantal-security 2014-03-24 18:43:24 UTC 2014-03-24
Import version 2.2.22-6ubuntu2.4 to ubuntu/quantal-security

Author: Marc Deslauriers
Author Date: 2014-03-19 19:38:47 UTC

Import version 2.2.22-6ubuntu2.4 to ubuntu/quantal-security

Imported using usd-importer.

New changelog entries:
  * SECURITY UPDATE: denial of service via mod_dav incorrect end of string
    calculation
    - debian/patches/CVE-2013-6438.patch: properly calculate correct length
      in modules/dav/main/util.c.
    - CVE-2013-6438
  * SECURITY UPDATE: denial of service via truncated cookie and
    mod_log_config
    - debian/patches/CVE-2014-0098.patch: properly parse tokens in
      modules/loggers/mod_log_config.c.
    - CVE-2014-0098

ubuntu/saucy-security 2014-03-24 18:43:24 UTC 2014-03-24
Import version 2.4.6-2ubuntu2.2 to ubuntu/saucy-security

Author: Marc Deslauriers
Author Date: 2014-03-19 19:32:18 UTC

Import version 2.4.6-2ubuntu2.2 to ubuntu/saucy-security

Imported using usd-importer.

New changelog entries:
  * SECURITY UPDATE: denial of service via mod_dav incorrect end of string
    calculation
    - debian/patches/CVE-2013-6438.patch: properly calculate correct length
      in modules/dav/main/util.c.
    - CVE-2013-6438
  * SECURITY UPDATE: denial of service via truncated cookie and
    mod_log_config
    - debian/patches/CVE-2014-0098.patch: properly parse tokens in
      modules/loggers/mod_log_config.c.
    - CVE-2014-0098

debian/squeeze 2014-02-15 16:41:41 UTC 2014-02-15
Import version 2.2.16-6+squeeze12 to debian/squeeze

Author: Stefan Fritsch
Author Date: 2014-01-28 21:48:05 UTC

Import version 2.2.16-6+squeeze12 to debian/squeeze

Imported using usd-importer.

New changelog entries:
  * Security: CVE-2013-1862: mod_rewrite: Ensure that client data written to
    the RewriteLog is escaped to prevent terminal escape sequences from
    entering the log file. Closes: #722333
  * Security: CVE-2013-1896: mod_dav: denial of service via MERGE request.
    Closes: #717272
  * mod_dav: Fix segfaults in certain error conditions.
    https://issues.apache.org/bugzilla/show_bug.cgi?id=52559

ubuntu/saucy-proposed 2013-12-05 18:45:59 UTC 2013-12-05
Import version 2.4.6-2ubuntu2.1 to ubuntu/saucy-proposed

Author: Robie Basak
Author Date: 2013-11-28 17:45:57 UTC

Import version 2.4.6-2ubuntu2.1 to ubuntu/saucy-proposed

Imported using usd-importer.

New changelog entries:
  * d/p/ignore-quilt-dir, d/p/itk-rerun-configure.patch: adjust build system so
    that it does not use files find inside the .pc directory. This stops a
    double module load causing later havoc, including "ChrootDir" directive
    failure (LP: #1251939). Thanks to Stefan Fritsch.
  * d/tests/chroot: dep8 test for ChrootDir case.

ubuntu/saucy 2013-08-09 15:58:15 UTC 2013-08-09
Import version 2.4.6-2ubuntu2 to ubuntu/saucy

Author: Robie Basak
Author Date: 2013-08-09 13:08:52 UTC

Import version 2.4.6-2ubuntu2 to ubuntu/saucy

Imported using usd-importer.

ubuntu/raring-updates 2013-07-15 13:33:18 UTC 2013-07-15
Import version 2.2.22-6ubuntu5.1 to ubuntu/raring-updates

Author: Marc Deslauriers
Author Date: 2013-07-12 12:29:24 UTC

Import version 2.2.22-6ubuntu5.1 to ubuntu/raring-updates

Imported using usd-importer.

ubuntu/raring-security 2013-07-15 12:48:14 UTC 2013-07-15
Import version 2.2.22-6ubuntu5.1 to ubuntu/raring-security

Author: Marc Deslauriers
Author Date: 2013-07-12 12:29:24 UTC

Import version 2.2.22-6ubuntu5.1 to ubuntu/raring-security

Imported using usd-importer.

New changelog entries:
  * SECURITY UPDATE: log file poisoning via mod_rewrite (LP: #1188069)
    - debian/patches/CVE-2013-1862.patch: properly escape items in
      modules/mappers/mod_rewrite.c.
    - CVE-2013-1862
  * SECURITY UPDATE: denial of service via MERGE request
    - debian/patches/CVE-2013-1896.patch: make sure DAV is enabled for URI
      in modules/dav/main/mod_dav.c.
    - CVE-2013-1896

ubuntu/oneiric-updates 2013-03-18 14:03:21 UTC 2013-03-18
Import version 2.2.20-1ubuntu1.4 to ubuntu/oneiric-updates

Author: Marc Deslauriers
Author Date: 2013-03-08 14:56:53 UTC

Import version 2.2.20-1ubuntu1.4 to ubuntu/oneiric-updates

Imported using usd-importer.

ubuntu/hardy-updates 2013-03-18 14:03:21 UTC 2013-03-18
Import version 2.2.8-1ubuntu0.25 to ubuntu/hardy-updates

Author: Marc Deslauriers
Author Date: 2013-03-08 16:17:51 UTC

Import version 2.2.8-1ubuntu0.25 to ubuntu/hardy-updates

Imported using usd-importer.

ubuntu/oneiric-security 2013-03-18 13:03:13 UTC 2013-03-18
Import version 2.2.20-1ubuntu1.4 to ubuntu/oneiric-security

Author: Marc Deslauriers
Author Date: 2013-03-08 14:56:53 UTC

Import version 2.2.20-1ubuntu1.4 to ubuntu/oneiric-security

Imported using usd-importer.

New changelog entries:
  * SECURITY UPDATE: multiple cross-site scripting issues
    - debian/patches/CVE-2012-3499_4558.dpatch: properly escape html in
      modules/generators/{mod_info.c,mod_status.c},
      modules/ldap/util_ldap_cache_mgr.c, modules/mappers/mod_imagemap.c,
      modules/proxy/{mod_proxy_balancer.c,mod_proxy_ftp.c}.
    - CVE-2012-3499
    - CVE-2012-4558
  * SECURITY UPDATE: denial of service in mod_proxy_ajp
    - debian/patches/CVE-2012-4557.dpatch: check for timeout in
      modules/proxy/ajp_link.c, modules/proxy/mod_proxy_ajp.c.
    - CVE-2012-4557
  * SECURITY UPDATE: symlink attack in apache2ctl script
    - debian/apache2ctl: introduce and use a safer mkdir_chown() function.
    - Thanks to Stefan Fritsch for the fix.
    - CVE-2013-1048

ubuntu/hardy-security 2013-03-18 13:03:13 UTC 2013-03-18
Import version 2.2.8-1ubuntu0.25 to ubuntu/hardy-security

Author: Marc Deslauriers
Author Date: 2013-03-08 16:17:51 UTC

Import version 2.2.8-1ubuntu0.25 to ubuntu/hardy-security

Imported using usd-importer.

New changelog entries:
  * SECURITY UPDATE: multiple cross-site scripting issues
    - debian/patches/CVE-2012-3499_4558.dpatch: properly escape html in
      modules/generators/{mod_info.c,mod_status.c},
      modules/ldap/util_ldap_cache_mgr.c, modules/mappers/mod_imagemap.c,
      modules/proxy/{mod_proxy_balancer.c,mod_proxy_ftp.c}.
    - CVE-2012-3499
    - CVE-2012-4558
  * SECURITY UPDATE: denial of service in mod_proxy_ajp
    - debian/patches/CVE-2012-4557.dpatch: check for timeout in
      modules/proxy/ajp_link.c, modules/proxy/mod_proxy_ajp.c.
    - CVE-2012-4557
  * SECURITY UPDATE: symlink attack in apache2ctl script
    - debian/patches/CVE-2013-1048.dpatch: introduce and use a safer
      mkdir_chown() function in support/apachectl.in.
    - CVE-2013-1048

ubuntu/raring 2013-03-15 15:33:14 UTC 2013-03-15
Import version 2.2.22-6ubuntu5 to ubuntu/raring

Author: Marc Deslauriers
Author Date: 2013-03-15 11:59:58 UTC

Import version 2.2.22-6ubuntu5 to ubuntu/raring

Imported using usd-importer.

ubuntu/raring-proposed 2013-03-15 14:03:14 UTC 2013-03-15
Import version 2.2.22-6ubuntu5 to ubuntu/raring-proposed

Author: Marc Deslauriers
Author Date: 2013-03-15 11:59:58 UTC

Import version 2.2.22-6ubuntu5 to ubuntu/raring-proposed

Imported using usd-importer.

New changelog entries:
  * SECURITY UPDATE: multiple cross-site scripting issues
    - debian/patches/CVE-2012-3499_4558.patch: properly escape html in
      modules/generators/{mod_info.c,mod_status.c},
      modules/ldap/util_ldap_cache_mgr.c, modules/mappers/mod_imagemap.c,
      modules/proxy/{mod_proxy_balancer.c,mod_proxy_ftp.c}.
    - CVE-2012-3499
    - CVE-2012-4558
  * SECURITY UPDATE: symlink attack in apache2ctl script
    - debian/apache2ctl: introduce and use a safer mkdir_chown() function.
    - Thanks to Stefan Fritsch for the fix.
    - CVE-2013-1048

ubuntu/quantal 2012-07-16 08:08:16 UTC 2012-07-16
Import version 2.2.22-6ubuntu2 to ubuntu/quantal

Author: Matthieu Baerts
Author Date: 2012-07-16 08:02:18 UTC

Import version 2.2.22-6ubuntu2 to ubuntu/quantal

Imported using usd-importer.

New changelog entries:
  * debian/apache2.py
   - Update apport hook for python3 ; thanks to Edward Donovan (LP: #1013171)
   - Check if this directory exists: /etc/apache2/sites-enabled/

debian/lenny 2012-03-10 15:10:15 UTC 2012-03-10
Import version 2.2.9-10+lenny12 to debian/lenny

Author: Stefan Fritsch
Author Date: 2012-02-05 20:56:02 UTC

Import version 2.2.9-10+lenny12 to debian/lenny

Imported using usd-importer.

New changelog entries:
  * Prevent unintended pattern expansion in some reverse proxy
    configurations by strictly validating the request-URI. Fixes
    CVE-2011-3368, CVE-2011-3639, CVE-2011-4317.
  * CVE-2011-3607: Fix integer overflow in ap_pregsub(), which allowed local
    privilege escalation.
  * CVE-2012-0031: Fix client process being able to crash parent process
    during shutdown.
  * CVE-2012-0053: Fix an issue in code 400 error responses that could expose
    "httpOnly" cookies.

ubuntu/lucid-proposed 2012-03-05 16:46:26 UTC 2012-03-05
Import version 2.2.14-5ubuntu8.9 to ubuntu/lucid-proposed

Author: Chuck Short
Author Date: 2012-03-02 19:43:08 UTC

Import version 2.2.14-5ubuntu8.9 to ubuntu/lucid-proposed

Imported using usd-importer.

New changelog entries:
  * debian/patches/99-fix-mod-dav-permissions.dpatch: Fix webdav permissions,
    backported from trunk Thanks to James M. Leady (LP: #540747)

1100 of 142 results
This repository contains Public information 
Everyone can see this information.