[apache2] annotated tag debian/2.4.10-10+deb8u12 created (now 34fe98c)
Stefan Fritsch
sf at moszumanska.debian.org
Sat Mar 31 09:46:40 UTC 2018
This is an automated email from the git hooks/post-receive script.
sf pushed a change to annotated tag debian/2.4.10-10+deb8u12
in repository apache2.
at 34fe98c (tag)
tagging fd4821e23f5ab391419f79ed3774b909807c7bb9 (commit)
replaces debian/2.4.10-10+deb8u11
tagged by Stefan Fritsch
on Sat Mar 31 11:45:47 2018 +0200
- Log -----------------------------------------------------------------
tag 2.4.10-10+deb8u12
-----BEGIN PGP SIGNATURE-----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=bfgf
-----END PGP SIGNATURE-----
Stefan Fritsch (7):
CVE-2017-15710: mod_authnz_ldap
CVE-2017-15715: <FilesMatch> bypass with a trailing newline
CVE-2018-1283: Tampering of mod_session data for CGI applications
CVE-2018-1301: out of bound read after failure in reading HTTP request
CVE-2018-1303: Possible out of bound read in mod_cache_socache
CVE-2018-1312: mod_auth_digest: Weak Digest auth nonce generation
release 2.4.10-10+deb8u12
-----------------------------------------------------------------------
This annotated tag includes the following new commits:
new ea64da1 CVE-2017-15710: mod_authnz_ldap
new ca20296 CVE-2017-15715: <FilesMatch> bypass with a trailing newline
new 8590c62 CVE-2018-1283: Tampering of mod_session data for CGI applications
new f6824e7 CVE-2018-1301: out of bound read after failure in reading HTTP request
new f78c6a8 CVE-2018-1303: Possible out of bound read in mod_cache_socache
new 3c82394 CVE-2018-1312: mod_auth_digest: Weak Digest auth nonce generation
new fd4821e release 2.4.10-10+deb8u12
The 7 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-apache/apache2.git
More information about the Pkg-apache-commits
mailing list