Hi Roberto,
> > I have prepared a new apache2 package (version 2.2.22-13+deb7u13) to
> > address CVE-2017-15710, CVE-2018-1301, and CVE-2018-1312. The patch for
> > CVE-2018-1312 did not apply cleanly, required backporting an additional
> > commit from the Apache history, as well as adjusting the
On Sat, May 26, 2018 at 02:27:18PM -0400, Roberto C. Sánchez wrote:
> Hello,
>
> I have prepared a new apache2 package (version 2.2.22-13+deb7u13) to
> address CVE-2017-15710, CVE-2018-1301, and CVE-2018-1312. The patch for
> CVE-2018-1312 did not apply cleanly, required backporting an additional
Hello,
I have prepared a new apache2 package (version 2.2.22-13+deb7u13) to
address CVE-2017-15710, CVE-2018-1301, and CVE-2018-1312. The patch for
CVE-2018-1312 did not apply cleanly, required backporting an additional
commit from the Apache history, as well as adjusting the function calls
for l
Hi,
On Sat, 26 May 2018, Moritz Muehlenhoff wrote:
> It's not appropriate anyway for an official Debian announcement. LTS
> itself is already a grayish area, but advertising a service which
> solely prepares package updates on paid basis seems not ok with DMUP.
Given that no Debian machines are
On Fri, May 25, 2018 at 10:16:43PM +0200, Markus Koschany wrote:
> Hi all,
>
> It is true that https://deb.freexian.com/extended-lts is not available
> yet but I assumed this will change on May 31. If not I can also delete
> the sentence about ELTS for now and add "More information will follow
> s
