update for apache2
- httpd-2.2.x-bnc829056-CVE-2013-1896-pr1482522-mod_dav.diff
CVE-2013-1896: Sending a MERGE request against a URI handled by
mod_dav_svn with the source href (sent as part of the request
body as XML) pointing to a URI that is not configured for DAV will
trigger a segfault. [bnc#829056]
- httpd-2.2.x-bnc829057-CVE-2013-1862-mod_rewrite_terminal_escape_sequences.diff
CVE-2013-1862: client data written to the RewriteLog must have
terminal escape sequences escaped. [bnc#829057]
-
Submitted by
Roman Drahtmueller (draht)
Fixed bugs
bnc#829056
VUL-1: CVE-2013-1896: apache2: mod_dav: segfault in merge request
bnc#829057
VUL-1: CVE-2013-1862: apache2: mod_rewrite: escape logdata to avoid terminal escapes
