[SECURITY] Fedora Core 4 Test Update: httpd-2.0.54-10.1

Joseph Orton jorton at redhat.com
Tue Jul 26 16:28:23 UTC 2005 

---------------------------------------------------------------------
Fedora Test Update Notification
FEDORA-2005-639
2005-07-26
---------------------------------------------------------------------

Product     : Fedora Core 4
Name        : httpd
Version     : 2.0.54                      
Release     : 10.1                  
Summary     : Apache HTTP Server
Description :
The Apache HTTP Server is a powerful, full-featured, efficient, and
freely-available Web server. The Apache HTTP Server is also the
most popular Web server on the Internet.

---------------------------------------------------------------------
Update Information:

This update includes version 2.0.53 of the Apache HTTP server, and also adds security fixes for CVE CAN-2005-2088 and CVE CAN-2005-1268.
---------------------------------------------------------------------
* Tue Jul 26 2005 Joe Orton <jorton at redhat.com> 2.0.54-10.1
- add security fix for C-L vs T-E handling (#162245, CVE CAN-2005-2088)
- mod_ssl: add security fix for CRL overflow (CVE CAN-2005-1268)
- mod_ssl: fix to enable output buffering (upstream #35279)
- mod_include: fix variable corruption in nested includes (upstream #12655)
- mod_auth_digest: fix hostinfo comparison in CONNECT requests


---------------------------------------------------------------------
This update can be downloaded from:
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/testing/4/

a92816ae5da4ff9e22b12b35dadccda3  SRPMS/httpd-2.0.54-10.1.src.rpm
50cc374d96d53d95cf42b1688cfb8e0f  ppc/httpd-2.0.54-10.1.ppc.rpm
868e599d036d7830b054801bde63e703  ppc/httpd-devel-2.0.54-10.1.ppc.rpm
639996fb7f5f2d3344caae069188e488  ppc/httpd-manual-2.0.54-10.1.ppc.rpm
ebfe7134b5f69bbd703a994dc324375c  ppc/mod_ssl-2.0.54-10.1.ppc.rpm
b8dc53d695e7d9834722c8bfb2bed3ea  ppc/debug/httpd-debuginfo-2.0.54-10.1.ppc.rpm
f509b648a5e532ade7e00774f6f5f2ce  x86_64/httpd-2.0.54-10.1.x86_64.rpm
059805f7291a91c67fab677c2ea429a4  x86_64/httpd-devel-2.0.54-10.1.x86_64.rpm
860676b2108bae2da1de2c5bb1186f28  x86_64/httpd-manual-2.0.54-10.1.x86_64.rpm
50ccd16763b0d87489a0c38489cf068b  x86_64/mod_ssl-2.0.54-10.1.x86_64.rpm
8f0eb150b61a5ca9a82b84244e129c8f  x86_64/debug/httpd-debuginfo-2.0.54-10.1.x86_64.rpm
68007186905b99577c7245d770c11681  i386/httpd-2.0.54-10.1.i386.rpm
b65f20a480184bd42c9e310466946858  i386/httpd-devel-2.0.54-10.1.i386.rpm
e663e7dd377fd2dec96be74ec376411f  i386/httpd-manual-2.0.54-10.1.i386.rpm
e4f87a5f5b01fbbabe328e3ebb76f21e  i386/mod_ssl-2.0.54-10.1.i386.rpm
81d1d39742e321072e32e791bfe3fc91  i386/debug/httpd-debuginfo-2.0.54-10.1.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.  You may 
need to edit your up2date channels configuration.  Within 
/etc/sysconfig/rhn/sources enable the following line: 
yum updates-testing http://download.fedora.redhat.com/pub/fedora/linux/core/updates/testing/4/$ARCH
---------------------------------------------------------------------

More information about the test mailing list