Revisions of apache2
Gustavo Yokoyama Ribeiro (gyribeiro)
committed
(revision 6)
- security update - modified patches % apache2-CVE-2022-23943.patch (extended by r1898772 [bsc#1197095c#10]) - security update - added patches fix CVE-2022-23943 [bsc#1197098], heap out-of-bounds write in mod_sed + apache2-CVE-2022-23943.patch fix CVE-2022-22720 [bsc#1197095], HTTP request smuggling due to incorrect error handling + apache2-CVE-2022-22720.patch fix CVE-2022-22719 [bsc#1197091], use of uninitialized value of in r:parsebody in mod_lua + apache2-CVE-2022-22719.patch fix CVE-2022-22721 [bsc#1197096], possible buffer overflow with very large or unlimited LimitXMLRequestBody + apache2-CVE-2022-22721.patch - apply correctly patches for CVE-2021-44790 [bsc#1193942] and CVE-2021-44224 [bsc#1193943]
Gustavo Yokoyama Ribeiro (gyribeiro)
committed
(revision 5)
- security update - added patches fix CVE-2021-44224 [bsc#1193943], NULL dereference or SSRF in forward proxy configurations + apache2-CVE-2021-44224.patch fix CVE-2021-44790 [bsc#1193942], buffer overflow when parsing multipart content in mod_lua + apache2-CVE-2021-44790.patch
Gustavo Yokoyama Ribeiro (gyribeiro)
committed
(revision 4)
- ssl-global.conf: set SSLCipherSuite to PROFILE=SYSTEM instead of DEFAULT_SUSE [jsc#SLE-22561] - set also SSLProxyCipherSuite to PROFILE=SYSTEM - modified sources % apache2-ssl-global.conf
Gustavo Yokoyama Ribeiro (gyribeiro)
committed
(revision 2)
jsc#SLE-20953; purposely not submitting from Factory, there are substantial changes in spec, some deprecated scripts dropped, etc.
Displaying all 6 revisions
