Bug#734447: opu: package apache2/2.2.16-6+squeeze12

To: Stefan Fritsch <sf@sfritsch.de>, 734447@bugs.debian.org
Cc: Bastian Blank <bastian.blank@credativ.de>
Subject: Bug#734447: opu: package apache2/2.2.16-6+squeeze12
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Tue, 28 Jan 2014 23:00:02 +0000
Message-id: <[🔎] 1390950002.21504.12.camel@jacala.jungle.funky-badger.org>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 734447@bugs.debian.org
In-reply-to: <[🔎] 2850658.epxKPu0l8W@k>
References: <[🔎] 20140107102241.7529.91210.reportbug@lacehammer.credativ.lan> <[🔎] 2850658.epxKPu0l8W@k>

Control: tags -1 + confirmed

On Tue, 2014-01-28 at 23:19 +0100, Stefan Fritsch wrote:
> apache2 (2.2.16-6+squeeze12) squeeze; urgency=medium
> 
>   * Security: CVE-2013-1862: mod_rewrite: Ensure that client data 
> written to
>     the RewriteLog is escaped to prevent terminal escape sequences 
> from
>     entering the log file. Closes: #722333
>   * Security: CVE-2013-1896: mod_dav: denial of service via MERGE 
> request.
>     Closes: #717272
>   * mod_dav: Fix segfaults in certain error conditions.
>     https://issues.apache.org/bugzilla/show_bug.cgi?id=52559

Please go ahead; thanks.

Regards,

Adam

Reply to:

References:
- Bug#734447: opu: package apache2/2.2.16-6+squeeze11 - CVE-2013-1862
  - From: Bastian Blank <bastian.blank@credativ.de>
- Bug#734447: opu: package apache2/2.2.16-6+squeeze12
  - From: Stefan Fritsch <sf@sfritsch.de>

Prev by Date: Bug#734447: opu: package apache2/2.2.16-6+squeeze12
Next by Date: Processed: Re: Bug#734447: opu: package apache2/2.2.16-6+squeeze12
Previous by thread: Bug#734447: opu: package apache2/2.2.16-6+squeeze12
Next by thread: Processed: Re: Bug#734447: opu: package apache2/2.2.16-6+squeeze12
Index(es):
- Date
- Thread