[apache2] branch jessie updated (eba1bb5 -> 5c80b90)
Stefan Fritsch
sf at moszumanska.debian.org
Sat Jan 21 22:05:24 UTC 2017
This is an automated email from the git hooks/post-receive script.
sf pushed a change to branch jessie
in repository apache2.
from eba1bb5 Don't run upgrade logic again after 2.4
new 654a605 Activate mod_reqtimeout
new 66276c6 CVE-2016-2161: mod_auth_digest: Fix segfaults
new 5c80b90 mod_session_crypto: prevent padding oracle attack
The 3 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.
Summary of changes:
debian/apache2.postinst | 10 +-
debian/changelog | 7 +
...016-0736-mod_session_crypto-padding-oracle.diff | 323 +++++++++++++++++++++
.../CVE-2016-2161-mod_auth_digest_segfault.diff | 119 ++++++++
debian/patches/series | 2 +
5 files changed, 460 insertions(+), 1 deletion(-)
create mode 100644 debian/patches/CVE-2016-0736-mod_session_crypto-padding-oracle.diff
create mode 100644 debian/patches/CVE-2016-2161-mod_auth_digest_segfault.diff
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-apache/apache2.git
More information about the Pkg-apache-commits
mailing list