Request 333177 - openSUSE Build Service

Overview

Request 333177 accepted

13.1:
- add httpd-2.4.6-ap_some_auth_required_API_unusable.patch to
replace ap_some_auth_required (unusable in Apache httpd 2.4)
with new ap_some_authn_required and ap_force_authn hook
[bnc#938723], [CVE-2015-3185]
- add httpd-2.4.6-chunk_header_parsing_defect.patch to parse chunk
headers properly [bnc#938728], [CVE-2015-3183]

13.2:
- add httpd-2.4.10-ap_some_auth_required_API_unusable.patch to
replace ap_some_auth_required (unusable in Apache httpd 2.4)
with new ap_some_authn_required and ap_force_authn hook
[bnc#938723], [CVE-2015-3185]
- add httpd-2.4.10-chunk_header_parsing_defect.patch to parse chunk
headers properly [bnc#938728], [CVE-2015-3183]
- fix Logjam vulnerability: change SSLCipherSuite cipherstring to
disable export cipher suites and deploy Ephemeral Elliptic-Curve
Diffie-Hellman (ECDHE) ciphers. Adjust 'gensslcert' script to
generate a strong and unique Diffie Hellman Group and append it
to the server certificate file [bnc#931723], [CVE-2015-4000]

Created by kstreitova over 8 years ago
In state accepted

Incident apache2.openSUSE_13.1_Update
Incident apache2.openSUSE_13.2_Update

Comments for request 333177 0

Login required, please login in order to comment

Request History

kstreitova created request over 8 years ago

13.1:
- add httpd-2.4.6-ap_some_auth_required_API_unusable.patch to
replace ap_some_auth_required (unusable in Apache httpd 2.4)
with new ap_some_authn_required and ap_force_authn hook
[bnc#938723], [CVE-2015-3185]
- add httpd-2.4.6-chunk_header_parsing_defect.patch to parse chunk
headers properly [bnc#938728], [CVE-2015-3183]

13.2:
- add httpd-2.4.10-ap_some_auth_required_API_unusable.patch to
replace ap_some_auth_required (unusable in Apache httpd 2.4)
with new ap_some_authn_required and ap_force_authn hook
[bnc#938723], [CVE-2015-3185]
- add httpd-2.4.10-chunk_header_parsing_defect.patch to parse chunk
headers properly [bnc#938728], [CVE-2015-3183]
- fix Logjam vulnerability: change SSLCipherSuite cipherstring to
disable export cipher suites and deploy Ephemeral Elliptic-Curve
Diffie-Hellman (ECDHE) ciphers. Adjust 'gensslcert' script to
generate a strong and unique Diffie Hellman Group and append it
to the server certificate file [bnc#931723], [CVE-2015-4000]

maintbot added apache2 as a reviewer over 8 years ago

Submission by someone who is not maintainer in the devel project. Please review

maintbot accepted review over 8 years ago

accepted

pgajdos accepted review over 8 years ago

ok

pgajdos approved review over 8 years ago

ok

msmeissn moved maintenance target to openSUSE:Maintenance:4048 over 8 years ago

msmeissn accepted request over 8 years ago

ok

openSUSE Build Service is sponsored by