ubuntu/+source/apache2:applied/debian/jessie

Last commit made on 2018-06-23
Get this branch:
git clone -b applied/debian/jessie https://git.launchpad.net/ubuntu/+source/apache2
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/debian/jessie
Repository:
lp:ubuntu/+source/apache2

Recent commits

657a081... by Stefan Fritsch on 2018-03-31

Import patches-applied version 2.4.10-10+deb8u12 to applied/debian/jessie

Imported using git-ubuntu import.

Changelog parent: 00e390572793fa6a05c5e856c4800602946e1a18
Unapplied parent: c4596a9809422583e0b43d77aa93bcc4edb1d15f

New changelog entries:
  * CVE-2017-15710: mod_authnz_ldap: Out of bound write in mod_authnz_ldap
    when using too small Accept-Language values.
  * CVE-2017-15715: <FilesMatch> bypass with a trailing newline in the file
    name.
    Configure the regular expression engine to match '$' to the end of
    the input string only, excluding matching the end of any embedded
    newline characters. Behavior can be changed with new directive
    'RegexDefaultOptions'.
  * CVE-2018-1283: Tampering of mod_session data for CGI applications.
  * CVE-2018-1301: Possible out of bound access after failure in reading the
    HTTP request
  * CVE-2018-1303: Possible out of bound read in mod_cache_socache
  * CVE-2018-1312: mod_auth_digest: Weak Digest auth nonce generation

c4596a9... by Stefan Fritsch on 2018-03-31

CVE-2018-1312-mod_auth_digest-nonce.diff

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2018-1312-mod_auth_digest-nonce.diff.

af98f5a... by Stefan Fritsch on 2018-03-31

CVE-2018-1303-mod_cache_socache-oob.diff

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2018-1303-mod_cache_socache-oob.diff.

d1cc2a1... by Stefan Fritsch on 2018-03-31

CVE-2018-1301-HTTP-request-read-out-of-bounds.diff

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2018-1301-HTTP-request-read-out-of-bounds.diff.

6b52399... by Stefan Fritsch on 2018-03-31

CVE-2018-1283-mod_session.diff

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2018-1283-mod_session.diff.

8125e48... by Stefan Fritsch on 2018-03-31

CVE-2017-15715-regex-line-endings.diff

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2017-15715-regex-line-endings.diff.

56d427d... by Stefan Fritsch on 2018-03-31

CVE-2017-15710-mod_authnz_ldap.diff

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2017-15710-mod_authnz_ldap.diff.

1b33ac7... by Stefan Fritsch on 2018-03-31

core: Disallow Methods' registration at run time (.htaccess), they

Gbp-Pq: core-Disallow-Methods-registration-at-run-time-.htac.patch.

94d084f... by Stefan Fritsch on 2018-03-31

CVE-2017-9788-mod_auth_digest.diff

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2017-9788-mod_auth_digest.diff.

6b1bf6d... by Stefan Fritsch on 2018-03-31

CVE-2017-7679.diff

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2017-7679.diff.