This bug was fixed in the package apache2 - 2.4.62-3ubuntu1
---------------
apache2 (2.4.62-3ubuntu1) plucky; urgency=medium
* Merge with Debian unstable (LP: #2085206). Remaining changes:
- d/index.html, d/icons/ubuntu-logo.png, d/apache2.postrm,
d/source/include-binaries, d/t/check-ubuntu-branding: Replace
Debian with Ubuntu on default homepage.
(LP #1966004, LP #1947459)
- d/apache2.py, d/apache2-bin.install: Add apport hook
(LP #609177)
- d/c/m/setenvif.conf, d/p/fix-dolphin-to-delete-webdav-dirs.patch: Add
dolphin and Konqueror/5 careful redirection so that directories can be
deleted via webdav.
(LP #1927742)
- d/debhelper/apache2-maintscript-helper: Allow execution when called from a
postinst script through a trigger (i.e., postinst triggered).
Thanks to Roel van Meer. (Closes: #1060450)
(LP #2038912)
- d/index.html, d/apache2.postrm: Fix https link to apache
documentation.
(LP #2045055)
apache2 (2.4.62-3) unstable; urgency=medium
* Fix debian/changelog
apache2 (2.4.62-2) unstable; urgency=medium
* Add myself as maintainer with yadd agreement.
* Fix CVE-2024-38474 regression:
Better question mark tracking to avoid UnsafeAllow3F
(Closes: #1079172)
* Fix CVE-2024-39884 regression:
Trust strings from configuration in mod_proxy
(Closes: #1079206)
-- Bryce Harrington <br...@canonical.com> Thu, 21 Nov 2024 13:36:30
-0800
** Changed in: apache2 (Ubuntu)
Status: Fix Committed => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-38474
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-39884
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2085206
Title:
Merge apache2 from Debian unstable for plucky
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/2085206/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
