[apache2] annotated tag debian/2.4.10-10+deb8u1 created (now 7ff7924)

Stefan Fritsch sf at moszumanska.debian.org
Sat Aug 1 22:09:20 UTC 2015 

This is an automated email from the git hooks/post-receive script.

sf pushed a change to annotated tag debian/2.4.10-10+deb8u1
in repository apache2.

        at  7ff7924   (tag)
   tagging  9b3d6a4af789772cc857050c141419f7959e420f (commit)
  replaces  debian/2.4.9-2
 tagged by  Stefan Fritsch
        on  Sun Aug 2 00:08:31 2015 +0200

- Log -----------------------------------------------------------------
tag 2.4.10-10+deb8u1
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=/hq1
-----END PGP SIGNATURE-----

Arno Töll (7):
      Warn when disabling essential modules, similar to apt when removing essential packages
      drop libcap-dev from our b-d's. It was needed for itk, we don't use it
      Add an apache2.2-common transitional package with all the ugly side effects. *le sigh*
      Imported Upstream version 2.4.10
      Merge tag 'upstream/2.4.10'
      Import 2.4.10
      Fix a2query return codes for fail() conditions

Stefan Fritsch (70):
      Add versions for breaks on removed packages.
      Close bug fixed in 2.4.10
      Remove libcgi-application-dispatch-perl from breaks
      Fix list of breaks for apache2.2-common
      More breaks fixes
      Breaks entries for etch+lenny
      Unversioned breaks are bad, use conflicts instead
      Reflow long line
      release 2.4.10-1
      move Provides: httpd, httpd-cgi to apache2
      keep fewer logs, rotate daily
      Clarify description of apache2 package
      apache2-maintscript-helper: print config errors
      re-add mod_ident
      pull from upstream 2.4.x branch for CVE-2013-5704 fix
      reduce number of kept logs to 14 daily logs
      release 2.4.10-2
      Add NEWS entry for the logrotate change in 2.4.10-2
      bump standards version
      build mod_authnz_fcgi
      fix apache2-bin's description
      remove trailing space
      Add some comments about SSLHonorCipherOrder in ssl.conf
      Defer actions by maintscript-helper if apache2 is unconfigured
      CVE-2014-3581: mod_cache DoS
      fix logic to get current MPM
      Don't use a2query in preinst
      tweak copyright
      lintian: invoke logger without path
      release 2.4.10-3
      Make apache2 depend on apache2-utils.
      add missing , in control file
      fix invalid 'local' in preinst
      Improve package descriptions
      Revert accidental commit of patched files
      remove obsolete suggests
      release 2.4.10-4
      Remove one forgotten instance of ident.load
      Release 2.4.10-5
      Disable SSL 3.0 in default config
      tweak changelog
      Pull from upstream 2.4.x branch up to r1632831
      update last-updated header
      Fix typo in package description
      release 2.4.10-6
      handle doc dir/symlink transitions
      Remove obsolete conffiles in apache2.2-common, too
      release 2.4.10-7
      Bump dpkg Pre-Depends
      mod_proxy_fcgi: Fix DoS by fcgi script. CVE-2014-3583
      mpm_event: fix use after free
      Fix mod_ssl memory leak
      mod_ssl: Avoid crashes due to stapling callback
      release 2.4.10-8
      Also add a build-depends on dpkg 1.17.14
      Bump debhelper build-dep
      fix CVE-2014-8109 in mod_lua
      Include ask-for-passphrase from Ubuntu and tweak for systemd
      Don't wait for apache to start if it returned an error
      ask-for-passphrase: bug fixes
      release 2.4.10-9
      Tweak mention of mod_access_compat in NEWS.Debian
      CVE-2015-0228: mod_lua DoS
      a2enconf/a2disconf in setup-instance
      release 2.4.10-10
      CVE-2015-3183: Fix chunk header parsing defect.
      CVE-2015-3185: add replacement for ap_some_auth_required
      Apply compatibility fixes for CVE-2015-3183 fix from upstream
      Add more fixes for CVE-2015-3183 patch from upstream
      release 2.4.10-10+deb8u1

-----------------------------------------------------------------------

No new revisions were added by this update.

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-apache/apache2.git

More information about the Pkg-apache-commits mailing list