[apache2] annotated tag debian/2.2.22-13+deb7u5 created (now caf9f79)

Sat Aug 1 22:09:20 UTC 2015

This is an automated email from the git hooks/post-receive script.

sf pushed a change to annotated tag debian/2.2.22-13+deb7u5
in repository apache2.

        at  caf9f79   (tag)
   tagging  f436aac82570883f0e1478299fb664c97c924f7e (commit)
  replaces  debian/2.2.22-12
 tagged by  Stefan Fritsch
        on  Sun Aug 2 00:08:54 2015 +0200

- Log -----------------------------------------------------------------
tag 2.2.22-13+deb7u5
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=zD+c
-----END PGP SIGNATURE-----

Arno Töll (1):
      Add a comment about APACHE_ARGUMENTS to envvars (for those who need it)

Stefan Fritsch (30):
      CVE-2012-3499, CVE-2012-4558: Fix XSS flaws in various modules.
      mod_log_forensic: Fix spurious '-' characters being logged
      Urgency medium for security fixes
      CVE-2013-1048: Fix symlink vulnerability when creating /var/lock/apache2
      release 2.2.22-13
      Adjust paragraph in README.Debian about MaxMemFree
      adjust version number
      make apache2ctl always create the necessary dirs
      CVE-2013-1862: rewritelog escaping
      CVE-2013-1896 mod_dav DoS
      mod_dav: Fix segfaults
      fix CVE-2013-1896 patch for 2.2
      release 2.2.22-13+deb7u1
      Fix CVE-2013-6438 in mod_dav
      mod_log_config: Fix cookie logging bug related to CVE-2014-0098
      Backport support for SSL/TLS ECC keys and ECDH ciphers
      mod_proxy: Fix crashes under high load with threaded mpms
      Release 2.2.22-13+deb7u2
      CVE-2014-0226: race condition in scoreboard handling
      CVE-2014-0231: mod_cgid DoS
      CVE-2014-0118: mod_deflate DoS
      release 2.2.22-13+deb7u3
      CVE-2013-5704: Fix handling of chunk trailers
      Fix SNI hostname comparison
      Fix valule of SSL_CLIENT_S_DN_UID in mod_ssl.
      Add paragraph about session ticket keys to README.Debian
      release 2.2.22-13+deb7u4
      Backport support for larger and custom DH params
      Fix CVE-2015-3183
      release 2.2.22-13+deb7u5

-----------------------------------------------------------------------

No new revisions were added by this update.

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-apache/apache2.git