[Pkg-apache-commits] r1036 - in /branches/lenny-apr-util: changelog patches/00list patches/020_CVE-2009-2412.dpatch
peters at alioth.debian.org
peters at alioth.debian.org
Thu Aug 6 14:44:22 UTC 2009
Author: peters
Date: Thu Aug 6 14:44:21 2009
New Revision: 1036
URL: http://svn.debian.org/wsvn/pkg-apache/?sc=1&rev=1036
Log:
Prepare apr-util 1.2.12+dfsg-8+lenny4 security release for CVE-2009-2412.
Added:
branches/lenny-apr-util/patches/020_CVE-2009-2412.dpatch
- copied unchanged from r1035, branches/etch-apr-util/patches/020_CVE-2009-2412.dpatch
Modified:
branches/lenny-apr-util/changelog
branches/lenny-apr-util/patches/00list
Modified: branches/lenny-apr-util/changelog
URL: http://svn.debian.org/wsvn/pkg-apache/branches/lenny-apr-util/changelog?rev=1036&op=diff
==============================================================================
--- branches/lenny-apr-util/changelog (original)
+++ branches/lenny-apr-util/changelog Thu Aug 6 14:44:21 2009
@@ -1,3 +1,9 @@
+apr-util (1.2.12+dfsg-8+lenny4) stable-security; urgency=high
+
+ * CVE-2009-2412: Fix overflow in RMM allocations due to alignment.
+
+ -- Peter Samuelson <peter at p12n.org> Thu, 06 Aug 2009 09:27:58 -0500
+
apr-util (1.2.12+dfsg-8+lenny3) stable; urgency=low
* CVE-2009-1956: Fix potential information disclosure bug on big-endian
Modified: branches/lenny-apr-util/patches/00list
URL: http://svn.debian.org/wsvn/pkg-apache/branches/lenny-apr-util/patches/00list?rev=1036&op=diff
==============================================================================
--- branches/lenny-apr-util/patches/00list (original)
+++ branches/lenny-apr-util/patches/00list Thu Aug 6 14:44:21 2009
@@ -9,4 +9,5 @@
017_CVE-2009-0023.dpatch
018_expat_entity_expansion.dpatch
019_CVE-2009-1956.dpatch
+020_CVE-2009-2412
099_alternate_md4_md5_impl
More information about the Pkg-apache-commits
mailing list