Bug#642956: pu: package apache2/2.2.16-6+squeeze4

To: Stefan Fritsch <sf@sfritsch.de>, 642956@bugs.debian.org
Subject: Bug#642956: pu: package apache2/2.2.16-6+squeeze4
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Mon, 26 Sep 2011 14:44:40 +0100
Message-id: <[🔎] 1317044680.2091.211.camel@hathi.jungle.funky-badger.org>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 642956@bugs.debian.org
In-reply-to: <[🔎] 20110925223447.399.4920.reportbug@k.lan>
References: <[🔎] 20110925223447.399.4920.reportbug@k.lan>

On Mon, 2011-09-26 at 00:34 +0200, Stefan Fritsch wrote:
> Please review apache2/2.2.16-6+squeeze4 for inclusion in s-p-u.
> It fixes a minor DoS issue, some bugs in the init script and
> adds some docs.

Thanks for this.  A couple of queries:

>    * Fix CVE-2011-3348: Possible denial of service in mod_proxy_ajp
>      if combined with mod_proxy_balancer.

As far as I can tell from the upload history and the security tracker,
this is still unfixed in unstable - is that correct?

>    * Tweak patch header to fix "dpatch unapply" with unstable's patch/dpatch.

Does the result still work with squeeze's tools?

Regards,

Adam

Reply to:

Follow-Ups:
- Bug#642956: pu: package apache2/2.2.16-6+squeeze4
  - From: Stefan Fritsch <sf@sfritsch.de>

References:
- Bug#642956: pu: package apache2/2.2.16-6+squeeze4
  - From: Stefan Fritsch <sf@sfritsch.de>

Prev by Date: Bug#618026: ibid: Ibid 0.1.1 contains 3 security fixes
Next by Date: Processed: Re: Bug#618026: ibid: Ibid 0.1.1 contains 3 security fixes
Previous by thread: Bug#642956: pu: package apache2/2.2.16-6+squeeze4
Next by thread: Bug#642956: pu: package apache2/2.2.16-6+squeeze4
Index(es):
- Date
- Thread