lp:ubuntu/+source/lighttpd

Get this repository:
git clone https://git.launchpad.net/ubuntu/+source/lighttpd
Members of Ubuntu Server Dev import team can upload to this repository. Log in for directions.

Branches

Name Last Modified Last Commit
ubuntu/dapper-security 2008-03-11 20:04:33 UTC 2008-03-11
Import patches-unapplied version 1.4.11-3ubuntu3.8 to ubuntu/dapper-security

Author: Emanuele Gentili
Author Date: 2008-03-11 14:03:17 UTC

Import patches-unapplied version 1.4.11-3ubuntu3.8 to ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: b925f96284189945c1a324deff75153edd7ae223

New changelog entries:
  * SECURITY UPDATE: (LP: #200987)
   + debian/patches/91_CVE-2008-1270.dpatch
    - mod_userdir in lighttpd 1.4.18 and earlier, when userdir.path is not set,
      uses a default of $HOME, which might allow remote attackers to read arbitrary
      files, as demonstrated by accessing the ~nobody directory.
  * References
   + http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1270
   + http://trac.lighttpd.net/trac/ticket/1587
   + http://trac.lighttpd.net/trac/changeset/2120

ubuntu/dapper-updates 2008-03-11 20:04:33 UTC 2008-03-11
Import patches-unapplied version 1.4.11-3ubuntu3.8 to ubuntu/dapper-security

Author: Emanuele Gentili
Author Date: 2008-03-11 14:03:17 UTC

Import patches-unapplied version 1.4.11-3ubuntu3.8 to ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: b925f96284189945c1a324deff75153edd7ae223

New changelog entries:
  * SECURITY UPDATE: (LP: #200987)
   + debian/patches/91_CVE-2008-1270.dpatch
    - mod_userdir in lighttpd 1.4.18 and earlier, when userdir.path is not set,
      uses a default of $HOME, which might allow remote attackers to read arbitrary
      files, as demonstrated by accessing the ~nobody directory.
  * References
   + http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1270
   + http://trac.lighttpd.net/trac/ticket/1587
   + http://trac.lighttpd.net/trac/changeset/2120

ubuntu/gutsy 2007-09-12 13:03:23 UTC 2007-09-12
Import patches-unapplied version 1.4.18-1ubuntu1 to ubuntu/gutsy

Author: Soren Hansen
Author Date: 2007-09-12 12:02:31 UTC

Import patches-unapplied version 1.4.18-1ubuntu1 to ubuntu/gutsy

Imported using git-ubuntu import.

Changelog parent: e616f845a857f51a643059fc4b58ecb1c691039b

New changelog entries:
  * Merge from Debian unstable, remaining changes:
    - Update maintainer field in debian/control.
    - Build against libgamin-dev rather than libfam-dev (fixes a warning
      during startup)
    - Make sure that upgrades succeed, even if we can't restart lighttpd.
    - Clean environment in init.d script.
  * New upstream release, fixes CVE-2007-4727 (closes: #441787)
  * lighttpd-angel is installed but not used yet

applied/ubuntu/gutsy 2007-09-12 13:03:23 UTC 2007-09-12
Import patches-applied version 1.4.18-1ubuntu1 to applied/ubuntu/gutsy

Author: Soren Hansen
Author Date: 2007-09-12 12:02:31 UTC

Import patches-applied version 1.4.18-1ubuntu1 to applied/ubuntu/gutsy

Imported using git-ubuntu import.

Changelog parent: 93e0786375fee21ad34c3eb6f590b170298ac463
Unapplied parent: d2a1038457f99171d9c5d4ac2b9534d132381472

New changelog entries:
  * Merge from Debian unstable, remaining changes:
    - Update maintainer field in debian/control.
    - Build against libgamin-dev rather than libfam-dev (fixes a warning
      during startup)
    - Make sure that upgrades succeed, even if we can't restart lighttpd.
    - Clean environment in init.d script.
  * New upstream release, fixes CVE-2007-4727 (closes: #441787)
  * lighttpd-angel is installed but not used yet

applied/ubuntu/dapper-proposed 2007-05-11 10:03:18 UTC 2007-05-11
Import patches-applied version 1.4.11-3ubuntu3.2 to applied/ubuntu/dapper-pro...

Author: Scott Kitterman
Author Date: 2007-04-24 16:04:01 UTC

Import patches-applied version 1.4.11-3ubuntu3.2 to applied/ubuntu/dapper-proposed

Imported using git-ubuntu import.

Changelog parent: e9f90eeeac3d032c059273dfb6bc1e08d490487b
Unapplied parent: 2faffdd597295e4785a1459a4d240250ac7f6b3f

New changelog entries:
  * Added relevant security fix from 1.4.14 (Closes LP: #107628)
    - DOS with files with mtime 0 (CVE-2007-1870)
       security_zero_mtime_crash

ubuntu/dapper-proposed 2007-05-11 10:03:18 UTC 2007-05-11
Import patches-unapplied version 1.4.11-3ubuntu3.2 to ubuntu/dapper-proposed

Author: Scott Kitterman
Author Date: 2007-04-24 16:04:01 UTC

Import patches-unapplied version 1.4.11-3ubuntu3.2 to ubuntu/dapper-proposed

Imported using git-ubuntu import.

Changelog parent: 7b9213f9a0b49e72578f910eccfdd511171939ed

New changelog entries:
  * Added relevant security fix from 1.4.14 (Closes LP: #107628)
    - DOS with files with mtime 0 (CVE-2007-1870)
       security_zero_mtime_crash

applied/ubuntu/feisty 2007-04-14 06:03:19 UTC 2007-04-14
Import patches-applied version 1.4.13-9ubuntu4 to applied/ubuntu/feisty

Author: Lukas Fittl
Author Date: 2007-04-14 03:26:10 UTC

Import patches-applied version 1.4.13-9ubuntu4 to applied/ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: 971b4fea269b5bcb28aea9e6a9aef847ea195a98
Unapplied parent: b55e070e4c34d6a910f308e54ad9377066258c2f

New changelog entries:
  * Added LDAP connection leak fix from Debian (Bug: #413917)
    - debian/patches/03_ldap_leak_bugfix.dpatch
  * Added security fixes from 1.4.14 (Closes LP: #106416)
    - Remote DOS in CRLF parsing (CVE-2007-1869)
       debian/patches/04_security_crlf_parsing_dos.dpatch
    - DOS with files with mtime 0 (CVE-2007-1870)
       debian/patches/05_security_zero_mtime_crash.dpatch

ubuntu/feisty 2007-04-14 06:03:19 UTC 2007-04-14
Import patches-unapplied version 1.4.13-9ubuntu4 to ubuntu/feisty

Author: Lukas Fittl
Author Date: 2007-04-14 03:26:10 UTC

Import patches-unapplied version 1.4.13-9ubuntu4 to ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: 63470d3fff4f25d17167b28e7cfa792a7d86059c

New changelog entries:
  * Added LDAP connection leak fix from Debian (Bug: #413917)
    - debian/patches/03_ldap_leak_bugfix.dpatch
  * Added security fixes from 1.4.14 (Closes LP: #106416)
    - Remote DOS in CRLF parsing (CVE-2007-1869)
       debian/patches/04_security_crlf_parsing_dos.dpatch
    - DOS with files with mtime 0 (CVE-2007-1870)
       debian/patches/05_security_zero_mtime_crash.dpatch

applied/ubuntu/edgy 2006-10-10 16:03:16 UTC 2006-10-10
Import patches-applied version 1.4.13~r1370-1ubuntu1 to applied/ubuntu/edgy

Author: Lukas Fittl
Author Date: 2006-10-10 11:57:38 UTC

Import patches-applied version 1.4.13~r1370-1ubuntu1 to applied/ubuntu/edgy

Imported using git-ubuntu import.

Changelog parent: 56b79bd0b5385c39e3b7899e013086f22752d353
Unapplied parent: ac9d9d05a580639e973b392263d10d9fbb4d9337

New changelog entries:
  * Merge from Debian unstable (Closes: Malone #64900). Remaining changes:
    - Add an additional dependency on libterm-readline-perl-perl
      (Malone #43895)
  * New upstream release (closes: #390877) (closes: #389911)
  * Compiled with --with-attr param (closes: #389712)
  * dropped 01-lua5.1.dpatch, issue fixed by upstream
  * New upstream release
  * fixes in debian/lighttpd.install (closes: #377802)
  * mod_cml is deprecated from now on and it will be removed in 1.5.0
    mod_magnet provides the same functionality and more with a
    cleaner syntax and in a more generic form
  * added separate module for mod_magnet (closes: #389578)
  * changed dependency from lua-5.0 to lua-5.1
  * added patch patches/01-lua5.1.dpatch
  * added pkg-config to Build-Depends

ubuntu/edgy 2006-10-10 16:03:16 UTC 2006-10-10
Import patches-unapplied version 1.4.13~r1370-1ubuntu1 to ubuntu/edgy

Author: Lukas Fittl
Author Date: 2006-10-10 11:57:38 UTC

Import patches-unapplied version 1.4.13~r1370-1ubuntu1 to ubuntu/edgy

Imported using git-ubuntu import.

Changelog parent: 476df775a9df4a1faffdd3daded711d32d1a152c

New changelog entries:
  * Merge from Debian unstable (Closes: Malone #64900). Remaining changes:
    - Add an additional dependency on libterm-readline-perl-perl
      (Malone #43895)
  * New upstream release (closes: #390877) (closes: #389911)
  * Compiled with --with-attr param (closes: #389712)
  * dropped 01-lua5.1.dpatch, issue fixed by upstream
  * New upstream release
  * fixes in debian/lighttpd.install (closes: #377802)
  * mod_cml is deprecated from now on and it will be removed in 1.5.0
    mod_magnet provides the same functionality and more with a
    cleaner syntax and in a more generic form
  * added separate module for mod_magnet (closes: #389578)
  * changed dependency from lua-5.0 to lua-5.1
  * added patch patches/01-lua5.1.dpatch
  * added pkg-config to Build-Depends

applied/ubuntu/dapper 2006-05-10 23:07:09 UTC 2006-05-10
Import patches-applied version 1.4.11-3ubuntu3 to applied/ubuntu/dapper

Author: Chuck Short
Author Date: 2006-05-10 22:11:24 UTC

Import patches-applied version 1.4.11-3ubuntu3 to applied/ubuntu/dapper

Imported using git-ubuntu import.

Changelog parent: d87a0ceae5bff6f1e16dc64616fbab4a9e303ae0
Unapplied parent: 8170947f5134af5ecfea7d588c0df73fcab2adab

New changelog entries:
  * debian/control
    + Added depends on libterm-readline-perl-perl. (Closes: Malone #43895)

ubuntu/dapper 2006-05-10 23:07:09 UTC 2006-05-10
Import patches-unapplied version 1.4.11-3ubuntu3 to ubuntu/dapper

Author: Chuck Short
Author Date: 2006-05-10 22:11:24 UTC

Import patches-unapplied version 1.4.11-3ubuntu3 to ubuntu/dapper

Imported using git-ubuntu import.

Changelog parent: 02fa5dbf4bb2d3605405eb6d5188ccc4a5c3a7c9

New changelog entries:
  * debian/control
    + Added depends on libterm-readline-perl-perl. (Closes: Malone #43895)

201212 of 212 results
This repository contains Public information 
Everyone can see this information.