Univention Bugzilla – Bug 53560
apache2: Multiple issues (4.4)
Last modified: 2021-07-14 17:16:57 CEST
New Debian apache2 2.4.25-3+deb9u10A~4.4.8.202107120934 fixes: This update addresses the following issues: * mod_rewrite configurations vulnerable to open redirect (CVE-2020-1927) * mod_proxy_ftp use of uninitialized value (CVE-2020-1934) * Single zero byte stack overflow in mod_auth_digest (CVE-2020-35452) * mod_session NULL pointer dereference in parser (CVE-2021-26690) * Heap overflow in mod_session (CVE-2021-26691) * MergeSlashes regression (CVE-2021-30641) * NULL pointer dereference on specially crafted HTTP/2 request (CVE-2021-31618)
--- mirror/ftp/4.4/unmaintained/4.4-3/source/apache2_2.4.25-3+deb9u9A~4.4.2.201910210907.dsc +++ apt/ucs_4.4-0-errata4.4-8/source/apache2_2.4.25-3+deb9u10A~4.4.8.202107120934.dsc @@ -1,9 +1,21 @@ -2.4.25-3+deb9u9A~4.4.2.201910210907 [Mon, 21 Oct 2019 09:07:35 +0200] Univention builddaemon <buildd@univention.de>: +2.4.25-3+deb9u10A~4.4.8.202107120934 [Mon, 12 Jul 2021 09:42:18 +0200] Univention builddaemon <buildd@univention.de>: * UCS auto build. The following patches have been applied to the original source package 05-autostart-setting 10-apache2-reload 20-no-proxy + +2.4.25-3+deb9u10 [Fri, 09 Jul 2021 10:12:34 +0200] Emilio Pozuelo Monfort <pochu@debian.org>: + + * Non-maintainer upload by the LTS Team. + * Backport patches from buster: + - CVE-2021-31618: null pointer dereference on crafted HTTP/2 request + - CVE-2021-30641: unexpected URL matching with 'MergeSlashes OFF' + - CVE-2021-26691: mod_session response handling heap overflow + - CVE-2021-26690: mod_session NULL pointer dereference + - CVE-2020-35452: mod_auth_digest stack overflow + - CVE-2020-1927: mod_rewrite open redirect + - CVE-2020-1934: mod_proxy_ftp uninitialized 2.4.25-3+deb9u9 [Sun, 13 Oct 2019 17:43:54 +0200] Stefan Fritsch <sf@debian.org>: <http://piuparts.knut.univention.de/4.4-8/#8070145231492660420>
OK: yaml OK: announce_errata OK: patch OK: piuparts [4.4-8] ac3123ea19 Bug #53560: apache2 2.4.25-3+deb9u10A~4.4.8.202107120934 doc/errata/staging/apache2.yaml | 25 +++++++++++++++++++++++++ 1 file changed, 25 insertions(+)
<https://errata.software-univention.de/#/?erratum=4.4x1008>