[ubuntu/precise] apache2 2.2.22-1ubuntu1 (Accepted)

Chuck Short zulcss at ubuntu.com
Mon Feb 13 01:30:20 UTC 2012 

apache2 (2.2.22-1ubuntu1) precise; urgency=low

  * Merge from Debian testing.  Remaining changes:
    - debian/{control, rules}: Enable PIE hardening.
    - debian/{control, rules, apache2.2-common.ufw.profile}: Add ufw profiles.
    - debian/control: Add bzr tag and point it to our tree
    - debian/apache2.py, debian/apache2.2-common.install: Add apport hook.
    - debian/control, debian/ask-for-passphrase, debian/config-dir/mods-available/ssl.conf:
      Plymouth aware passphrase dialog program ask-for-passphrase.

apache2 (2.2.22-1) unstable; urgency=medium

  [ Stefan Fritsch ]
  * New upstream release, urgency medium due to security fixes:
    - Fix CVE-2012-0021: mod_log_config: DoS with '%{cookiename}C' log format
    - Fix CVE-2012-0031: Unprivileged child process could cause the parent to
      crash at shutdown
    - Fix CVE-2012-0053: Exposure of "httpOnly" cookies in code 400 error
      message.
  * Move httxt2dbm to apache2-utils
  * Adjust debian/control to point to new git repository.

  [ Arno Töll ]
  * Fix "typo in /etc/apache2/apache2.conf" (Closes: #653801)

Date: Sun, 12 Feb 2012 20:06:35 -0500
Changed-By: Chuck Short <zulcss at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/precise/+source/apache2/2.2.22-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Sun, 12 Feb 2012 20:06:35 -0500
Source: apache2
Binary: apache2.2-common apache2.2-bin apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-mpm-itk apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-dbg
Architecture: source
Version: 2.2.22-1ubuntu1
Distribution: precise
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Chuck Short <zulcss at ubuntu.com>
Description: 
 apache2    - Apache HTTP Server metapackage
 apache2-dbg - Apache debugging symbols
 apache2-doc - Apache HTTP Server documentation
 apache2-mpm-event - Apache HTTP Server - event driven model
 apache2-mpm-itk - multiuser MPM for Apache 2.2
 apache2-mpm-prefork - Apache HTTP Server - traditional non-threaded model
 apache2-mpm-worker - Apache HTTP Server - high speed threaded model
 apache2-prefork-dev - Apache development headers - non-threaded MPM
 apache2-suexec - Standard suexec program for Apache 2 mod_suexec
 apache2-suexec-custom - Configurable suexec program for Apache 2 mod_suexec
 apache2-threaded-dev - Apache development headers - threaded MPM
 apache2-utils - utility programs for webservers
 apache2.2-bin - Apache HTTP Server common binary files
 apache2.2-common - Apache HTTP Server common files
Closes: 653801
Changes: 
 apache2 (2.2.22-1ubuntu1) precise; urgency=low
 .
   * Merge from Debian testing.  Remaining changes:
     - debian/{control, rules}: Enable PIE hardening.
     - debian/{control, rules, apache2.2-common.ufw.profile}: Add ufw profiles.
     - debian/control: Add bzr tag and point it to our tree
     - debian/apache2.py, debian/apache2.2-common.install: Add apport hook.
     - debian/control, debian/ask-for-passphrase, debian/config-dir/mods-available/ssl.conf:
       Plymouth aware passphrase dialog program ask-for-passphrase.
 .
 apache2 (2.2.22-1) unstable; urgency=medium
 .
   [ Stefan Fritsch ]
   * New upstream release, urgency medium due to security fixes:
     - Fix CVE-2012-0021: mod_log_config: DoS with '%{cookiename}C' log format
     - Fix CVE-2012-0031: Unprivileged child process could cause the parent to
       crash at shutdown
     - Fix CVE-2012-0053: Exposure of "httpOnly" cookies in code 400 error
       message.
   * Move httxt2dbm to apache2-utils
   * Adjust debian/control to point to new git repository.
 .
   [ Arno Töll ]
   * Fix "typo in /etc/apache2/apache2.conf" (Closes: #653801)
Checksums-Sha1: 
 a03629fc180ae70b985d6fc364986286c5c2190c 2426 apache2_2.2.22-1ubuntu1.dsc
 bf3bbfda967ac900348e697f26fe86b25695efe9 7200529 apache2_2.2.22.orig.tar.gz
 ab4a4d41a7d66eb861cbf1903e625ebbc6b7d651 214062 apache2_2.2.22-1ubuntu1.debian.tar.gz
Checksums-Sha256: 
 ceae81fa73233c3e7f6579deb0d2589043ef70dbba3dd1de8adbec0e97edcea5 2426 apache2_2.2.22-1ubuntu1.dsc
 74c1ffffefe1a502339b004ad6488fbd858eb425a05968cd67c05695dbc0fe7c 7200529 apache2_2.2.22.orig.tar.gz
 388bf08ca391858945334dd7c1c502239ba0e317aedbd4288287685e7f4033c0 214062 apache2_2.2.22-1ubuntu1.debian.tar.gz
Files: 
 ffb73621b9910bedd95a4b49e01c36d3 2426 httpd optional apache2_2.2.22-1ubuntu1.dsc
 d77fa5af23df96a8af68ea8114fa6ce1 7200529 httpd optional apache2_2.2.22.orig.tar.gz
 117d56d3a37076ee40d7c4b2f6a06f6f 214062 httpd optional apache2_2.2.22-1ubuntu1.debian.tar.gz
Original-Maintainer: Debian Apache Maintainers <debian-apache at lists.debian.org>
Original-Vcs-Browser: http://anonscm.debian.org/gitweb/?p=pkg-apache/apache2.git
Original-Vcs-Git: git://git.debian.org/git/pkg-apache/apache2.git

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iEYEARECAAYFAk84YjgACgkQIHZ33voUATva+QCeNjVcLOziLRuAUIoVNG0QolvZ
tbAAn0VIzQKs2nLUoVkWL0ZtuaTCYdMS
=ppwC
-----END PGP SIGNATURE-----

More information about the Precise-changes mailing list