[apache2] annotated tag debian/2.4.10-10+deb8u12 created (now 34fe98c)

Stefan Fritsch sf at moszumanska.debian.org
Sat Mar 31 09:46:40 UTC 2018 

This is an automated email from the git hooks/post-receive script.

sf pushed a change to annotated tag debian/2.4.10-10+deb8u12
in repository apache2.

        at  34fe98c   (tag)
   tagging  fd4821e23f5ab391419f79ed3774b909807c7bb9 (commit)
  replaces  debian/2.4.10-10+deb8u11
 tagged by  Stefan Fritsch
        on  Sat Mar 31 11:45:47 2018 +0200

- Log -----------------------------------------------------------------
tag 2.4.10-10+deb8u12
-----BEGIN PGP SIGNATURE-----
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=bfgf
-----END PGP SIGNATURE-----

Stefan Fritsch (7):
      CVE-2017-15710: mod_authnz_ldap
      CVE-2017-15715: <FilesMatch> bypass with a trailing newline
      CVE-2018-1283: Tampering of mod_session data for CGI applications
      CVE-2018-1301: out of bound read after failure in reading HTTP request
      CVE-2018-1303: Possible out of bound read in mod_cache_socache
      CVE-2018-1312: mod_auth_digest: Weak Digest auth nonce generation
      release 2.4.10-10+deb8u12

-----------------------------------------------------------------------

This annotated tag includes the following new commits:

       new  ea64da1   CVE-2017-15710: mod_authnz_ldap
       new  ca20296   CVE-2017-15715: <FilesMatch> bypass with a trailing newline
       new  8590c62   CVE-2018-1283: Tampering of mod_session data for CGI applications
       new  f6824e7   CVE-2018-1301: out of bound read after failure in reading HTTP request
       new  f78c6a8   CVE-2018-1303: Possible out of bound read in mod_cache_socache
       new  3c82394   CVE-2018-1312: mod_auth_digest: Weak Digest auth nonce generation
       new  fd4821e   release 2.4.10-10+deb8u12

The 7 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-apache/apache2.git

More information about the Pkg-apache-commits mailing list