[apache2] annotated tag debian/2.4.10-10+deb8u9 created (now 8d3d6ec)

Stefan Fritsch sf at moszumanska.debian.org
Tue Jun 20 19:54:48 UTC 2017 

This is an automated email from the git hooks/post-receive script.

sf pushed a change to annotated tag debian/2.4.10-10+deb8u9
in repository apache2.

        at  8d3d6ec   (tag)
   tagging  dc26744f4b555657a13049797bdde1ba7f8e2623 (commit)
  replaces  debian/2.4.10-10+deb8u7
 tagged by  Stefan Fritsch
        on  Tue Jun 20 21:25:12 2017 +0200

- Log -----------------------------------------------------------------
tag 2.4.10-10+deb8u9
-----BEGIN PGP SIGNATURE-----

iQIzBAABCgAdFiEEOpiNza8JqByyYYsxxodfNUHO/eAFAllJdpsACgkQxodfNUHO
/eB+ng/+JVpKTVnB+chjLPk4kTcWX7AfBmrN2CMtUWO3XZxCWSN8A2vRViH2JfNX
2dXkHxw7TRN13EDCVGwE4Y5D88DEUDH+IZ6PGN1M65SU+ximaNdV33TzjGmNuNzC
G4w48qEEqzy5mOgLseLGqV+Yim0iUqaq6x6F/yHFiOREqfrSf25cO5/C1HzfKL6o
SS3WS31x+SPll5MLXr0lax4KvdPcRsq/JskR+hDf5KibP6+EJwgN3WWh7wBvf9di
rzJ/QJ1E+T2D40gIyuyXPSNG5HsmR6Naj+8msliRAeZEK1pr0zTW6Ys7MKt4PvOd
yS9CaLEI/YVyQt1VjA/Xhrbw6Cm9GpM9JbzMoTHOcnEjFOLLRp15bZ96XC8im340
ne8KaimCm2UdpH33kMNin+sV1mujr4xuNNasriBUGAbE4YrJRp/i4I/i5Mgf87Rq
7d0H0zpax4ivs47mU3NU2/osn37uPHCdFM2UX/9DFMFt37f08XogDTo+ipkRfrvK
RcZHDOTJx59UT7Gp14XtNzdb8RAaQVeGzHz2vd1An4S2QZNIqk7OnE056H7sJsMp
2qGu/c+d459Rvkql8ZfLRWoMEl8zMAJV8IlQ4xJqUrlY3n5MMcql8fCvaKLpsWFQ
VrVunG/K8QCihh8/QG79iNx3YRSJvSg5+6rCBEQIdV/rdoKPK6A=
=6zzY
-----END PGP SIGNATURE-----

Stefan Fritsch (11):
      Don't run upgrade logic again after 2.4
      Activate mod_reqtimeout
      CVE-2016-2161: mod_auth_digest: Fix segfaults
      mod_session_crypto: prevent padding oracle attack
      Backport strict http fix for CVE-2016-8743
      release 2.4.10-10+deb8u8 for jessie-security
      CVE-2017-3167: ap_get_basic_auth_pw()
      CVE-2017-3169: mod_ssl NULL pointer dereference
      CVE-2017-7668: Buffer overrun in ap_find_token()
      CVE-2017-7679: mod_mime buffer overread
      release 2.4.10-10+deb8u9

-----------------------------------------------------------------------

This annotated tag includes the following new commits:

       new  b184cf1   CVE-2017-3167: ap_get_basic_auth_pw()
       new  88ffa66   CVE-2017-3169: mod_ssl NULL pointer dereference
       new  197bab3   CVE-2017-7668: Buffer overrun in ap_find_token()
       new  796be50   CVE-2017-7679: mod_mime buffer overread
       new  dc26744   release 2.4.10-10+deb8u9

The 5 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-apache/apache2.git

More information about the Pkg-apache-commits mailing list