ubuntu/+source/apache2:applied/debian/wheezy

Last commit made on 2015-09-05
Get this branch:
git clone -b applied/debian/wheezy https://git.launchpad.net/ubuntu/+source/apache2
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/debian/wheezy
Repository:
lp:ubuntu/+source/apache2

Recent commits

d181997... by Stefan Fritsch on 2015-08-18

Import patches-applied version 2.2.22-13+deb7u6 to applied/debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 9a2f32ff96df9ad1d6fb90a0590c899aa90dd70f
Unapplied parent: ecad7e8b5713e135011884cbcd6bd0a32fb34820

New changelog entries:
  * Fix regression causing spurious errors when loading certificate chain.
    Closes: #794383
  * CVE-2015-3183: Fix request smuggling via chunked transfer encoding.
    Backported by Marc Deslauriers.
  * Don't limit default DH parameters to 1024 bits. Closes: #780398
    This may cause problems with some Java based clients. A work-around is to
    configure these client not to use DHE key exchange but use ECDHE or RSA
    instead.
    A server-side work-around that limits the DH parameters to 1024 bits for
    all clients is described at
    http://httpd.apache.org/docs/trunk/ssl/ssl_faq.html#javadh .
  * Backport support for adding DH parameters to the SSLCertificateFile.

ecad7e8... by Stefan Fritsch on 2015-08-18

SSL_CTX_use_certificate_clear_errors.diff

No DEP3 Subject or Description header found

Gbp-Pq: SSL_CTX_use_certificate_clear_errors.diff.

0023f8a... by Stefan Fritsch on 2015-08-18

fix request smuggling via chunked transfer encoding

Gbp-Pq: CVE-2015-3183.patch.

203dd6a... by Stefan Fritsch on 2015-08-18

DH-SSLCertificateFile.patch

No DEP3 Subject or Description header found

Gbp-Pq: DH-SSLCertificateFile.patch.

2dc3500... by Stefan Fritsch on 2015-08-18

mod_ssl_SSL_CLIENT_S_DN_UID.diff

No DEP3 Subject or Description header found

Gbp-Pq: mod_ssl_SSL_CLIENT_S_DN_UID.diff.

c8275b5... by Stefan Fritsch on 2015-08-18

SNI_case_insensitve.diff

No DEP3 Subject or Description header found

Gbp-Pq: SNI_case_insensitve.diff.

04c0697... by Stefan Fritsch on 2015-08-18

CVE-2013-5704_trailers.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2013-5704_trailers.patch.

924292f... by Stefan Fritsch on 2015-08-18

CVE-2014-0118_mod_deflate-DoS.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2014-0118_mod_deflate-DoS.patch.

f2eff6e... by Stefan Fritsch on 2015-08-18

CVE-2014-0231_mod_cgid-DoS.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2014-0231_mod_cgid-DoS.patch.

1751438... by Stefan Fritsch on 2015-08-18

CVE-2014-0226_scoreboard.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2014-0226_scoreboard.patch.