Bug#676975: marked as done (apache2.2-common: contradictory comment in /etc/apache2/apache2.conf about the .load suffix)
Your message dated Sat, 23 Jun 2012 19:17:16 +0000
with message-id <E1SiVpc-0000aA-HN@franck.debian.org>
and subject line Bug#676975: fixed in apache2 2.2.22-8
has caused the Debian Bug report #676975,
regarding apache2.2-common: contradictory comment in /etc/apache2/apache2.conf about the .load suffix
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)
--
676975: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=676975
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
Package: apache2.2-common
Version: 2.2.22-7
Severity: minor
/etc/apache2/apache2.conf has the following comment:
# Yet we strongly suggest that all configuration files either end with a
# .conf or .load suffix in the file name. The next Debian release will
# ignore files not ending with .conf.
If only files ending with .conf will be taken into account in the next
Debian release, then the suggestion shouldn't mention files ending with
the .load suffix.
-- Package-specific info:
List of /etc/apache2/mods-enabled/*.load:
alias auth_basic authn_file authz_default authz_groupfile
authz_host authz_user autoindex cgi cgid dav dav_svn deflate dir
env mime negotiation perl reqtimeout rewrite setenvif ssl status
userdir
-- System Information:
Debian Release: wheezy/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 3.2.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=POSIX, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages apache2.2-common depends on:
ii apache2-utils 2.2.22-7
ii apache2.2-bin 2.2.22-7
ii lsb-base 4.1+Debian6
ii mime-support 3.52-1
ii perl 5.14.2-11
ii procps 1:3.3.3-1
Versions of packages apache2.2-common recommends:
ii ssl-cert 1.0.29
Versions of packages apache2.2-common suggests:
ii apache2-doc 2.2.22-7
pn apache2-suexec | apache2-suexec-custom <none>
ii chromium [www-browser] 20.0.1132.21~r139451-3
ii elinks [www-browser] 0.12~pre5-8
ii epiphany-browser [www-browser] 3.4.2-1
ii iceweasel [www-browser] 10.0.5esr-1
ii links [www-browser] 2.6-2
ii links2 [www-browser] 2.6-2
ii lynx-cur [www-browser] 2.8.8dev.12-2
ii midori [www-browser] 0.4.3-1
ii uzbl [www-browser] 0.0.0~git.20120514-1
ii w3m [www-browser] 0.5.3-8
Versions of packages apache2.2-common is related to:
pn apache2-mpm-event <none>
pn apache2-mpm-itk <none>
pn apache2-mpm-prefork <none>
ii apache2-mpm-worker 2.2.22-7
-- Configuration Files:
/etc/apache2/mods-available/userdir.conf changed [not included]
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: apache2
Source-Version: 2.2.22-8
We believe that the bug you reported is fixed in the latest version of
apache2, which is due to be installed in the Debian FTP archive:
apache2-dbg_2.2.22-8_i386.deb
to main/a/apache2/apache2-dbg_2.2.22-8_i386.deb
apache2-doc_2.2.22-8_all.deb
to main/a/apache2/apache2-doc_2.2.22-8_all.deb
apache2-mpm-event_2.2.22-8_i386.deb
to main/a/apache2/apache2-mpm-event_2.2.22-8_i386.deb
apache2-mpm-itk_2.2.22-8_i386.deb
to main/a/apache2/apache2-mpm-itk_2.2.22-8_i386.deb
apache2-mpm-prefork_2.2.22-8_i386.deb
to main/a/apache2/apache2-mpm-prefork_2.2.22-8_i386.deb
apache2-mpm-worker_2.2.22-8_i386.deb
to main/a/apache2/apache2-mpm-worker_2.2.22-8_i386.deb
apache2-prefork-dev_2.2.22-8_i386.deb
to main/a/apache2/apache2-prefork-dev_2.2.22-8_i386.deb
apache2-suexec-custom_2.2.22-8_i386.deb
to main/a/apache2/apache2-suexec-custom_2.2.22-8_i386.deb
apache2-suexec_2.2.22-8_i386.deb
to main/a/apache2/apache2-suexec_2.2.22-8_i386.deb
apache2-threaded-dev_2.2.22-8_i386.deb
to main/a/apache2/apache2-threaded-dev_2.2.22-8_i386.deb
apache2-utils_2.2.22-8_i386.deb
to main/a/apache2/apache2-utils_2.2.22-8_i386.deb
apache2.2-bin_2.2.22-8_i386.deb
to main/a/apache2/apache2.2-bin_2.2.22-8_i386.deb
apache2.2-common_2.2.22-8_i386.deb
to main/a/apache2/apache2.2-common_2.2.22-8_i386.deb
apache2_2.2.22-8.debian.tar.gz
to main/a/apache2/apache2_2.2.22-8.debian.tar.gz
apache2_2.2.22-8.dsc
to main/a/apache2/apache2_2.2.22-8.dsc
apache2_2.2.22-8_i386.deb
to main/a/apache2/apache2_2.2.22-8_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 676975@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Stefan Fritsch <sf@debian.org> (supplier of updated apache2 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Sat, 23 Jun 2012 17:50:47 +0200
Source: apache2
Binary: apache2.2-common apache2.2-bin apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-mpm-itk apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-dbg
Architecture: source i386 all
Version: 2.2.22-8
Distribution: unstable
Urgency: medium
Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>
Changed-By: Stefan Fritsch <sf@debian.org>
Description:
apache2 - Apache HTTP Server metapackage
apache2-dbg - Apache debugging symbols
apache2-doc - Apache HTTP Server documentation
apache2-mpm-event - Apache HTTP Server - event driven model
apache2-mpm-itk - multiuser MPM for Apache 2.2
apache2-mpm-prefork - Apache HTTP Server - traditional non-threaded model
apache2-mpm-worker - Apache HTTP Server - high speed threaded model
apache2-prefork-dev - Apache development headers - non-threaded MPM
apache2-suexec - Standard suexec program for Apache 2 mod_suexec
apache2-suexec-custom - Configurable suexec program for Apache 2 mod_suexec
apache2-threaded-dev - Apache development headers - threaded MPM
apache2-utils - utility programs for webservers
apache2.2-bin - Apache HTTP Server common binary files
apache2.2-common - Apache HTTP Server common files
Closes: 676975
Changes:
apache2 (2.2.22-8) unstable; urgency=medium
.
[ Stefan Fritsch ]
* CVE-2012-2687: mod_negotiation: Escape filenames in variant list to prevent
a possible XSS for a site where untrusted users can upload files to a
location with MultiViews enabled.
* Add example for X-XSS-Protection to conf.d/security.
.
[ Arno Töll ]
* Fix "contradictory comment in /etc/apache2/apache2.conf about the
.load suffix" (Closes: #676975). Hopefully you are now happy, Vincent. :-)
Checksums-Sha1:
b6ed07b346b4841e89e689d6a48cc3c45abdc4fb 2235 apache2_2.2.22-8.dsc
f929c27d0d3d0e4db946bff1d995dab22fa85490 192717 apache2_2.2.22-8.debian.tar.gz
37dd2e5296824f51c2df9d51e4d34db6bff04b4b 319040 apache2.2-common_2.2.22-8_i386.deb
eca89de1a8bd57704528f1926e3d206a39743671 1459574 apache2.2-bin_2.2.22-8_i386.deb
3699ef31fd5d98ef935ff95aff7b3c4efbc1279b 2186 apache2-mpm-worker_2.2.22-8_i386.deb
5c1d1778a0700ba6ae519a6af488ef6a6b915d7c 2294 apache2-mpm-prefork_2.2.22-8_i386.deb
261cc8ff9adb47e2bc0d1b4d908aa52dab9cbd91 2254 apache2-mpm-event_2.2.22-8_i386.deb
701cb414c5f24c760b51d90d268c4cc341fa7c5d 2280 apache2-mpm-itk_2.2.22-8_i386.deb
8cd7e75a366afde528e5428965474f0485669202 176686 apache2-utils_2.2.22-8_i386.deb
a53d1ea2b65926906720387428189a204c1a35c2 106794 apache2-suexec_2.2.22-8_i386.deb
073478b3c9380995b3a09db0562b44a71b72b180 108466 apache2-suexec-custom_2.2.22-8_i386.deb
51bc85a5d1c2b7e1c42371bec861f3873a65e0af 1388 apache2_2.2.22-8_i386.deb
81c7151a9d66f8fb9c440eede352e1f872697500 2704614 apache2-doc_2.2.22-8_all.deb
2bfb33e7cbc1964ec38cd28b6876eaa653afe79f 137950 apache2-prefork-dev_2.2.22-8_i386.deb
dc54d9d6dfdfa783cd87fbdab7894c914bf61473 139114 apache2-threaded-dev_2.2.22-8_i386.deb
437c668cb3f9e848b0ae686287d9ac73fb3de93d 3502668 apache2-dbg_2.2.22-8_i386.deb
Checksums-Sha256:
7b71ac3b1edf452c4a57311c07e3bbe02f180842615610168bcf563860ecaf4e 2235 apache2_2.2.22-8.dsc
09096fdf30f7890eaf0c557718af0709116a29dd54c9324eb5e20c2b0803a5f9 192717 apache2_2.2.22-8.debian.tar.gz
9af0828de8993bafe23f90c0b49e62c1a25237dcdc7c401d13f22cc0ca8fcbad 319040 apache2.2-common_2.2.22-8_i386.deb
7f93d122deda6f21072bb03d9942b8fffe46f485f59bf2079e337ac4f1fd09fe 1459574 apache2.2-bin_2.2.22-8_i386.deb
96db0d7078920027454d96fab47b9673849bc11943d1c6c2a69087957cae4833 2186 apache2-mpm-worker_2.2.22-8_i386.deb
242784f077160d62996e3d48bd62b024f780b57abc25f91c29ccbf77bbb5aec2 2294 apache2-mpm-prefork_2.2.22-8_i386.deb
59255f46800784ac71e8d9fc6071e856eb29aeb2c86dc13f5a19f20653a7f44e 2254 apache2-mpm-event_2.2.22-8_i386.deb
59fc603b813ef4777293274f13504fd716f531998ea5e70c1c6d3fe65cd0fbe1 2280 apache2-mpm-itk_2.2.22-8_i386.deb
c598066e4b7741423fe2977995257a09027e231acafcdd6074d27aced28e82e2 176686 apache2-utils_2.2.22-8_i386.deb
d61be7c3f3567bb8fd145d67217a907fec197eea17e388208f8d98798f710860 106794 apache2-suexec_2.2.22-8_i386.deb
c744f2e8412ab6ca722451ffe5bfd1a7c409dd0f167048f76be3617da267618e 108466 apache2-suexec-custom_2.2.22-8_i386.deb
06b2e5281644758864b31b9d29976bba873ab8a99a4210c20883d3d14d274a5d 1388 apache2_2.2.22-8_i386.deb
35284a0c4cad01ec31bf0ff158a4da314cbb78cc2fcc3720d065acdfd24b74a4 2704614 apache2-doc_2.2.22-8_all.deb
cd9e8632bdc4e03115614aa2391a57f37820e5fb4e598fbbb5a66abcefae7b4e 137950 apache2-prefork-dev_2.2.22-8_i386.deb
307e91ec1aeaa2975882bb5babb0aa6b5bc43a2c69e61b0b2d659d8e16e7c811 139114 apache2-threaded-dev_2.2.22-8_i386.deb
741343caceadc6f36cdd6d2777067193c08f4c29b4c66aab6a2a2d46bf7e5e71 3502668 apache2-dbg_2.2.22-8_i386.deb
Files:
a249097026975a8b70a75cb2cc90e22c 2235 httpd optional apache2_2.2.22-8.dsc
5e301a55c48bb389046ecf18be816514 192717 httpd optional apache2_2.2.22-8.debian.tar.gz
1aca0049edfbb3f9daaad0f9823fe21e 319040 httpd optional apache2.2-common_2.2.22-8_i386.deb
5a6c68d94bd8aa58082d801cb6f2f6cc 1459574 httpd optional apache2.2-bin_2.2.22-8_i386.deb
f98881905e5c8992685ee78fecb6aab6 2186 httpd optional apache2-mpm-worker_2.2.22-8_i386.deb
8fa6c50b26c82ba6abc16300257f49c7 2294 httpd optional apache2-mpm-prefork_2.2.22-8_i386.deb
33b190b6c86ef36edf9a6a961129ff52 2254 httpd optional apache2-mpm-event_2.2.22-8_i386.deb
96a84392bf456201582c0b5aa743d15d 2280 httpd extra apache2-mpm-itk_2.2.22-8_i386.deb
c4b52d0cfb16e59df643ae3aae12fc14 176686 httpd optional apache2-utils_2.2.22-8_i386.deb
879eeddbd7b882ba21bcbd6aba14b886 106794 httpd optional apache2-suexec_2.2.22-8_i386.deb
21726bd51f80c69cc244846b9bfde50d 108466 httpd extra apache2-suexec-custom_2.2.22-8_i386.deb
79d1cc815a38f13e32cf96dfa1e69b3d 1388 httpd optional apache2_2.2.22-8_i386.deb
69b942c307f39ac9c61f737dca9610ac 2704614 doc optional apache2-doc_2.2.22-8_all.deb
5bada3d0c47b8c2e3caaaf05d65dae6a 137950 httpd extra apache2-prefork-dev_2.2.22-8_i386.deb
72300bef7c166dc0466926b2fcce7736 139114 httpd extra apache2-threaded-dev_2.2.22-8_i386.deb
3f3cbf04fd501bb07e06ebd7398a6da3 3502668 debug extra apache2-dbg_2.2.22-8_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iD8DBQFP5eddbxelr8HyTqQRAh6yAKCzF0O1l38UQ3iwo4+iL71OSrOGCwCfYQ1J
wq4ee9slByeWICef8YrmLIM=
=0lqK
-----END PGP SIGNATURE-----
--- End Message ---
Reply to: