[Pkg-apache-commits] r1034 - in /branches/lenny-apr: changelog patches/001_cve-2009-2412.dpatch patches/00list
peters at alioth.debian.org
peters at alioth.debian.org
Thu Aug 6 14:25:04 UTC 2009
Author: peters
Date: Thu Aug 6 14:25:02 2009
New Revision: 1034
URL: http://svn.debian.org/wsvn/pkg-apache/?sc=1&rev=1034
Log:
Prepare apr 1.2.12-5+lenny1 security release.
Added:
branches/lenny-apr/patches/001_cve-2009-2412.dpatch
- copied unchanged from r1033, branches/etch-apr/patches/001_cve-2009-2412.dpatch
Modified:
branches/lenny-apr/changelog
branches/lenny-apr/patches/00list
Modified: branches/lenny-apr/changelog
URL: http://svn.debian.org/wsvn/pkg-apache/branches/lenny-apr/changelog?rev=1034&op=diff
==============================================================================
--- branches/lenny-apr/changelog (original)
+++ branches/lenny-apr/changelog Thu Aug 6 14:25:02 2009
@@ -1,3 +1,10 @@
+apr (1.2.12-5+lenny1) stable-security; urgency=high
+
+ * Fix CVE-2009-2412: overflow in pool allocations, where size alignment
+ was taking place.
+
+ -- Peter Samuelson <peter at p12n.org> Thu, 06 Aug 2009 09:22:28 -0500
+
apr (1.2.12-5) unstable; urgency=low
* Actually switch to /dev/urandom instead of only adding a non-functional
Modified: branches/lenny-apr/patches/00list
URL: http://svn.debian.org/wsvn/pkg-apache/branches/lenny-apr/patches/00list?rev=1034&op=diff
==============================================================================
--- branches/lenny-apr/patches/00list (original)
+++ branches/lenny-apr/patches/00list Thu Aug 6 14:25:02 2009
@@ -1,3 +1,4 @@
+001_cve-2009-2412
011_fix_apr-config
013_ship_find_apr.m4
014_fix-apr.pc
More information about the Pkg-apache-commits
mailing list