[ubuntu/cosmic-proposed] apache2 2.4.34-1ubuntu1 (Accepted)

Andreas Hasenack andreas at canonical.com
Mon Aug 6 14:46:19 UTC 2018 

apache2 (2.4.34-1ubuntu1) cosmic; urgency=medium

  * Merge with Debian unstable. Remaining changes:
    - debian/{control, apache2.install, apache2-utils.ufw.profile,
      apache2.dirs}: Add ufw profiles.
    - debian/apache2.py, debian/apache2-bin.install: Add apport hook.
    - debian/patches/086_svn_cross_compiles: Backport several cross
      fixes from upstream
    - d/index.html, d/icons/ubuntu-logo.png, d/apache2.postrm: replace
      Debian with Ubuntu on default page.
      + d/source/include-binaries: add Ubuntu icon file
    - d/t/control, d/t/check-http2: add basic test for http2 support
    - d/control, d/rules, d/config-dir/mods-available/md.load: don't build
      libapache2-mod-md, as that makes apache2-bin pull in libcurl4 which
      cannot be coinstalled with libcurl3. That situation breaks the
      installation of libapache2-mod-shib2.  See
      https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1770242/comments/1
      for details.

apache2 (2.4.34-1) unstable; urgency=medium

  [ Ondřej Surý ]
  * New upstream version 2.4.34
    Security fixes:
    - CVE-2018-1333: Denial of service in mod_http2. Closes: #904106
    - CVE-2018-8011: Denial of service in mod_md. Closes: #904107
  * Refresh patches for Apache2 2.4.34 release
  * Update the suexec-custom.patch for 2.4.34 release

  [ Stefan Fritsch ]
  * Remove load order dependency introduced in mod_lbmethod_* in 2.4.34
  * Remove debian/gbp.conf. Closes: #904641
  * Fix typo in apache2_switch_mpm() in apache2-maintscript-helper.
    Closes: #904150

Date: Fri, 03 Aug 2018 17:09:27 -0300
Changed-By: Andreas Hasenack <andreas at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/apache2/2.4.34-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 03 Aug 2018 17:09:27 -0300
Source: apache2
Binary: apache2 apache2-data apache2-bin apache2-utils apache2-suexec-pristine apache2-suexec-custom apache2-doc apache2-dev apache2-ssl-dev apache2-dbg libapache2-mod-proxy-uwsgi
Architecture: source
Version: 2.4.34-1ubuntu1
Distribution: cosmic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Andreas Hasenack <andreas at canonical.com>
Description:
 apache2    - Apache HTTP Server
 apache2-bin - Apache HTTP Server (modules and other binary files)
 apache2-data - Apache HTTP Server (common files)
 apache2-dbg - Apache debugging symbols
 apache2-dev - Apache HTTP Server (development headers)
 apache2-doc - Apache HTTP Server (on-site documentation)
 apache2-ssl-dev - Apache HTTP Server (mod_ssl development headers)
 apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec
 apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec
 apache2-utils - Apache HTTP Server (utility programs for web servers)
 libapache2-mod-proxy-uwsgi - transitional package
Closes: 904106 904107 904150 904641
Changes:
 apache2 (2.4.34-1ubuntu1) cosmic; urgency=medium
 .
   * Merge with Debian unstable. Remaining changes:
     - debian/{control, apache2.install, apache2-utils.ufw.profile,
       apache2.dirs}: Add ufw profiles.
     - debian/apache2.py, debian/apache2-bin.install: Add apport hook.
     - debian/patches/086_svn_cross_compiles: Backport several cross
       fixes from upstream
     - d/index.html, d/icons/ubuntu-logo.png, d/apache2.postrm: replace
       Debian with Ubuntu on default page.
       + d/source/include-binaries: add Ubuntu icon file
     - d/t/control, d/t/check-http2: add basic test for http2 support
     - d/control, d/rules, d/config-dir/mods-available/md.load: don't build
       libapache2-mod-md, as that makes apache2-bin pull in libcurl4 which
       cannot be coinstalled with libcurl3. That situation breaks the
       installation of libapache2-mod-shib2.  See
       https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1770242/comments/1
       for details.
 .
 apache2 (2.4.34-1) unstable; urgency=medium
 .
   [ Ondřej Surý ]
   * New upstream version 2.4.34
     Security fixes:
     - CVE-2018-1333: Denial of service in mod_http2. Closes: #904106
     - CVE-2018-8011: Denial of service in mod_md. Closes: #904107
   * Refresh patches for Apache2 2.4.34 release
   * Update the suexec-custom.patch for 2.4.34 release
 .
   [ Stefan Fritsch ]
   * Remove load order dependency introduced in mod_lbmethod_* in 2.4.34
   * Remove debian/gbp.conf. Closes: #904641
   * Fix typo in apache2_switch_mpm() in apache2-maintscript-helper.
     Closes: #904150
Checksums-Sha1:
 39abfcbde0c637e1e57c8952acc454a2dfc697ed 3270 apache2_2.4.34-1ubuntu1.dsc
 94d6e274273903ed153479c7701fa03761abf93d 6942969 apache2_2.4.34.orig.tar.bz2
 e38a04a49f65f5344e9436f3cf94426a35dabfe2 802572 apache2_2.4.34-1ubuntu1.debian.tar.xz
 8b85971ab0359ba794eb94cb5122e24283b1c42b 7542 apache2_2.4.34-1ubuntu1_source.buildinfo
Checksums-Sha256:
 9c566d2799d7ea40aa1169fbbdaf18ca95e17a25a9f02cfe8841f5bdb787b6e2 3270 apache2_2.4.34-1ubuntu1.dsc
 fa53c95631febb08a9de41fd2864cfff815cf62d9306723ab0d4b8d7aa1638f0 6942969 apache2_2.4.34.orig.tar.bz2
 002fa72ece591854e01409534652fa6f7e613d5a95241bfb7c272fa933409267 802572 apache2_2.4.34-1ubuntu1.debian.tar.xz
 0b5be33966487e709c8116cad14888edd8b6bf5e5875cb7e29e9f0057be1c7bf 7542 apache2_2.4.34-1ubuntu1_source.buildinfo
Files:
 254046ac4fd42cc514be9a157b763424 3270 httpd optional apache2_2.4.34-1ubuntu1.dsc
 818adca52f3be187fe45d6822755be95 6942969 httpd optional apache2_2.4.34.orig.tar.bz2
 2c05481ec09702b6876d7ece4d0c02d0 802572 httpd optional apache2_2.4.34-1ubuntu1.debian.tar.xz
 860ac9561fea2851cb7b6e98b76cca30 7542 httpd optional apache2_2.4.34-1ubuntu1_source.buildinfo
Original-Maintainer: Debian Apache Maintainers <debian-apache at lists.debian.org>

-----BEGIN PGP SIGNATURE-----
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=o/6+
-----END PGP SIGNATURE-----

More information about the Cosmic-changes mailing list