[apache2] annotated tag debian/2.4.10-10+deb8u9 created (now 8d3d6ec)
Stefan Fritsch
sf at moszumanska.debian.org
Tue Jun 20 19:54:48 UTC 2017
This is an automated email from the git hooks/post-receive script.
sf pushed a change to annotated tag debian/2.4.10-10+deb8u9
in repository apache2.
at 8d3d6ec (tag)
tagging dc26744f4b555657a13049797bdde1ba7f8e2623 (commit)
replaces debian/2.4.10-10+deb8u7
tagged by Stefan Fritsch
on Tue Jun 20 21:25:12 2017 +0200
- Log -----------------------------------------------------------------
tag 2.4.10-10+deb8u9
-----BEGIN PGP SIGNATURE-----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=6zzY
-----END PGP SIGNATURE-----
Stefan Fritsch (11):
Don't run upgrade logic again after 2.4
Activate mod_reqtimeout
CVE-2016-2161: mod_auth_digest: Fix segfaults
mod_session_crypto: prevent padding oracle attack
Backport strict http fix for CVE-2016-8743
release 2.4.10-10+deb8u8 for jessie-security
CVE-2017-3167: ap_get_basic_auth_pw()
CVE-2017-3169: mod_ssl NULL pointer dereference
CVE-2017-7668: Buffer overrun in ap_find_token()
CVE-2017-7679: mod_mime buffer overread
release 2.4.10-10+deb8u9
-----------------------------------------------------------------------
This annotated tag includes the following new commits:
new b184cf1 CVE-2017-3167: ap_get_basic_auth_pw()
new 88ffa66 CVE-2017-3169: mod_ssl NULL pointer dereference
new 197bab3 CVE-2017-7668: Buffer overrun in ap_find_token()
new 796be50 CVE-2017-7679: mod_mime buffer overread
new dc26744 release 2.4.10-10+deb8u9
The 5 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-apache/apache2.git
More information about the Pkg-apache-commits
mailing list