Bug#439715: marked as done (apache2.2-common: /etc/init.d/apache2 contains bash-specific directives)
Your message dated Wed, 05 Sep 2007 07:56:24 +0000
with message-id <E1ISpkO-0005Kj-8o@ries.debian.org>
and subject line Bug#430386: fixed in apache2 2.2.3-4+etch2
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
- To: Debian Bug Tracking System <submit@bugs.debian.org>
- Subject: apache2.2-common: /etc/init.d/apache2 contains bash-specific directives
- From: Iustin Pop <iusty@k1024.org>
- Date: Sun, 26 Aug 2007 21:42:13 +0200
- Message-id: <20070826194213.GB8182@teal.hq.k1024.org>
Package: apache2.2-common
Version: 2.2.3-4+etch1
Severity: normal
Hi,
/etc/init.d/apache2, at lines 105 and 108, contains the [[ ... ]]
syntax, which is bash-specific, even if the init script begins with
#!/bin/sh -e
This makes the script break when one uses another posix-compliant shell
as /bin/sh, such as dash.
Thanks,
iustin
-- System Information:
Debian Release: 4.0
APT prefers stable
APT policy: (900, 'stable')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/dash
Kernel: Linux 2.6.20.9-sonia
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Versions of packages apache2.2-common depends on:
ii apache2-utils 2.2.3-4+etch1 utility programs for webservers
ii libmagic1 4.17-5etch2 File type determination library us
ii lsb-base 3.1-23.2etch1 Linux Standard Base 3.1 init scrip
ii mime-support 3.39-1 MIME files 'mime.types' & 'mailcap
ii net-tools 1.60-17 The NET-3 networking toolkit
ii procps 1:3.2.7-3 /proc file system utilities
apache2.2-common recommends no packages.
-- no debconf information
--- End Message ---
--- Begin Message ---
- To: 430386-close@bugs.debian.org
- Subject: Bug#430386: fixed in apache2 2.2.3-4+etch2
- From: Stefan Fritsch <sf@debian.org>
- Date: Wed, 05 Sep 2007 07:56:24 +0000
- Message-id: <E1ISpkO-0005Kj-8o@ries.debian.org>
Source: apache2
Source-Version: 2.2.3-4+etch2
We believe that the bug you reported is fixed in the latest version of
apache2, which is due to be installed in the Debian FTP archive:
apache2-doc_2.2.3-4+etch2_all.deb
to pool/main/a/apache2/apache2-doc_2.2.3-4+etch2_all.deb
apache2-mpm-event_2.2.3-4+etch2_i386.deb
to pool/main/a/apache2/apache2-mpm-event_2.2.3-4+etch2_i386.deb
apache2-mpm-perchild_2.2.3-4+etch2_all.deb
to pool/main/a/apache2/apache2-mpm-perchild_2.2.3-4+etch2_all.deb
apache2-mpm-prefork_2.2.3-4+etch2_i386.deb
to pool/main/a/apache2/apache2-mpm-prefork_2.2.3-4+etch2_i386.deb
apache2-mpm-worker_2.2.3-4+etch2_i386.deb
to pool/main/a/apache2/apache2-mpm-worker_2.2.3-4+etch2_i386.deb
apache2-prefork-dev_2.2.3-4+etch2_i386.deb
to pool/main/a/apache2/apache2-prefork-dev_2.2.3-4+etch2_i386.deb
apache2-src_2.2.3-4+etch2_all.deb
to pool/main/a/apache2/apache2-src_2.2.3-4+etch2_all.deb
apache2-threaded-dev_2.2.3-4+etch2_i386.deb
to pool/main/a/apache2/apache2-threaded-dev_2.2.3-4+etch2_i386.deb
apache2-utils_2.2.3-4+etch2_i386.deb
to pool/main/a/apache2/apache2-utils_2.2.3-4+etch2_i386.deb
apache2.2-common_2.2.3-4+etch2_i386.deb
to pool/main/a/apache2/apache2.2-common_2.2.3-4+etch2_i386.deb
apache2_2.2.3-4+etch2.diff.gz
to pool/main/a/apache2/apache2_2.2.3-4+etch2.diff.gz
apache2_2.2.3-4+etch2.dsc
to pool/main/a/apache2/apache2_2.2.3-4+etch2.dsc
apache2_2.2.3-4+etch2_all.deb
to pool/main/a/apache2/apache2_2.2.3-4+etch2_all.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 430386@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Stefan Fritsch <sf@debian.org> (supplier of updated apache2 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 27 Aug 2007 22:45:02 +0200
Source: apache2
Binary: apache2-utils apache2-prefork-dev apache2 apache2-mpm-prefork apache2-doc apache2-mpm-event apache2.2-common apache2-mpm-worker apache2-src apache2-threaded-dev apache2-mpm-perchild
Architecture: source all i386
Version: 2.2.3-4+etch2
Distribution: stable
Urgency: low
Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>
Changed-By: Stefan Fritsch <sf@debian.org>
Description:
apache2 - Next generation, scalable, extendable web server
apache2-doc - documentation for apache2
apache2-mpm-event - Event driven model for Apache HTTPD 2.1
apache2-mpm-perchild - Transitional package - please remove
apache2-mpm-prefork - Traditional model for Apache HTTPD 2.1
apache2-mpm-worker - High speed threaded model for Apache HTTPD 2.1
apache2-prefork-dev - development headers for apache2
apache2-src - Apache source code
apache2-threaded-dev - development headers for apache2
apache2-utils - utility programs for webservers
apache2.2-common - Next generation, scalable, extendable web server
Closes: 285290 415698 420101 430116 430386 431048
Changes:
apache2 (2.2.3-4+etch2) stable; urgency=low
.
* Security fixes:
- CVE-2006-5752: XSS in mod_status
- CVE-2007-1863: DoS in mod_cache
- CVE-2007-3304: parent process could be forced to kill other processes
* Add /var/lock/apache2 owner fix to the init script, as /var/lock
may not persist across reboots. (Closes: #420101)
* Fix regression breaking /etc/init.d/apache2 when /bin/sh is not bash
(Closes: #430386)
* Only allow group www-data to execute suexec (Closes: #431048)
* Display warning when NO_START=1 even with VERBOSE=no, to avoid
confusion (Closes: #430116)
* Unbreak apache2-doc: Ship correct conf.d/apache2-doc and add note how
to read the docs in README.Debian (Closes: #285290)
* NEWS.Debian: Add warning about new 2.2 config file syntax and point to
upgrading howto.
* Ship /usr/lib/cgi-bin (Closes: #415698)
Files:
7e10524d04b40c328fd7dbf8957662b0 1068 web optional apache2_2.2.3-4+etch2.dsc
5951dc769654fc74184b4d0a69f792bb 109719 web optional apache2_2.2.3-4+etch2.diff.gz
80e35b14c964cafc58e96bfe76744571 962890 web optional apache2.2-common_2.2.3-4+etch2_i386.deb
c9ef544bb3e0003b3eeb989e4393092e 422532 web optional apache2-mpm-worker_2.2.3-4+etch2_i386.deb
2bfb3c49ffe9889b0f4ab563cfdc182f 418762 web optional apache2-mpm-prefork_2.2.3-4+etch2_i386.deb
08be30f76210971caaa07571304c4da3 423104 web optional apache2-mpm-event_2.2.3-4+etch2_i386.deb
b9f32e00fda085ef9c2fd8571c8ecfb6 341960 web optional apache2-utils_2.2.3-4+etch2_i386.deb
900bb21102cd5bc3b946b836d6bb2540 407234 devel optional apache2-prefork-dev_2.2.3-4+etch2_i386.deb
9c7ed1e3d34fb6a2850afbd2297a6177 407824 devel optional apache2-threaded-dev_2.2.3-4+etch2_i386.deb
ab4263b68c668c92480e821d0f48877f 273620 web optional apache2-mpm-perchild_2.2.3-4+etch2_all.deb
771aaa068bace20ee1629fd77c1eceec 40326 web optional apache2_2.2.3-4+etch2_all.deb
c4e3a85db7dfdc96b97e5024304974ef 2207396 doc optional apache2-doc_2.2.3-4+etch2_all.deb
144483f864cd59a747cee632e81f990b 6613776 devel extra apache2-src_2.2.3-4+etch2_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFG3ZtXbxelr8HyTqQRArDdAJ9DkHzYLPooOy+cKcVbo3ye1l4ZPwCgiFA7
Grs/3YD2tZxefNujwYqRZvw=
=W+lQ
-----END PGP SIGNATURE-----
--- End Message ---
Reply to: