Hi Stefan
Could you please provide an updated package for oldstable and stable via
oldstable-proposed-updates and proposed-updates. This problem will not
be fixed via -security.
Bastian
--
Bastian BlankDurchwahl: +49 21 61 / 46 43
-194
credativ GmbH, HRB
to rewrite log.
+CVE-2013-1862
+
+ -- Bastian Blank bastian.bl...@credativ.de Tue, 07 Jan 2014 09:57:36 +
+
apache2 (2.2.22-13) unstable; urgency=medium
[ Stefan Fritsch ]
diff -Nru apache2-2.2.22/debian/patches/CVE-2013-1862.patch
apache2-2.2.22/debian/patches/CVE-2013-1862.patch
/debian/changelog
--- apache2-2.2.16/debian/changelog
+++ apache2-2.2.16/debian/changelog
@@ -1,3 +1,11 @@
+apache2 (2.2.16-6+squeeze11.1) UNRELEASED; urgency=low
+
+ * Non-maintainer upload.
+ * Properly escape data written to rewrite log.
+CVE-2013-1862
+
+ -- Bastian Blank bastian.bl
On Tue, Mar 09, 2010 at 08:28:44PM +0100, Stefan Fritsch wrote:
On Tuesday 09 March 2010, Bastian Blank wrote:
The timeout is reported less then 30 seconds after the start, which
is much below the configured timeout.
Please try if disabling mod_reqtimeout fixes the problem.
Yep, I did
Package: apache2.2-common
Version: 2.2.15-1
Severity: important
I'm playing with mod_proxy (and mod_cache) in front of some Zope
servers.
Config is mostly unchanged. Virtual host config:
| VirtualHost *:8080
| ServerName http://example.com:8080/
| UseCanonicalName On
|
| Proxy *
|
Package: apache2-common
Version: 2.0.55-3
Severity: important
mod_deflate overwrites the Vary variable. This breaks proxying of this
responses if they already had this header set to a different value.
Bastian
--
Bones: The man's DEAD, Jim!
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with
Package: apache2-common
Version: 2.0.52-3
Severity: wishlist
Please split htpasswd2 and htdigest2 into an extra package. They are
usefull on machines without a complete apache.
Bastian
--
Those who hate and fight must stop themselves -- otherwise it is not stopped.
-- Spock,
Package: apache2-mpm-worker
Version: 2.0.52-3
Severity: grave
apache fails with Invalid argument: apr_proc_mutex_unlock failed while
doing a gracefull restart. This seems to be the same problem than
described in #231147.
Adding AcceptMutex fcntl into the worker module section fixes the
problem.
Package: apache2-common
Version: 2.0.48-7
Severity: important
apache2-common fails to install:
Setting up apache2-common (2.0.48-7) ...
(No info could be read for -p: geteuid()=0 but you should be root.)
Setting Apache2 to Listen on port 80. If this is not desired, please edit
Package: libapr0
Version: 2.0.48-5
Severity: serious
libaprutil.so.0 uses libdb4.2 but don't links against them.
Bastian
--
Deflector shields just came on, Captain.
signature.asc
Description: Digital signature
10 matches
Mail list logo