group.of.nepali.translators team mailing list archive

["Leonidas S. Barbosa" <1945311@xxxxxxxxxxxxxxxxxx>]

** Changed in: apache2 (Ubuntu Xenial)
       Status: Confirmed => Fix Released

** Changed in: apache2 (Ubuntu Trusty)
       Status: Confirmed => Invalid

** Changed in: apache2 (Ubuntu Xenial)
     Assignee: (unassigned) => Leonidas S. Barbosa (leosilvab)

** Changed in: apache2 (Ubuntu Xenial)
   Importance: Undecided => High

-- 
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/1945311

Title:
  Fix for CVE-2021-40438 breaks existing configs

Status in apache2 package in Ubuntu:
  Fix Committed
Status in apache2 source package in Trusty:
  Invalid
Status in apache2 source package in Xenial:
  Fix Released
Status in apache2 source package in Bionic:
  Fix Released
Status in apache2 source package in Focal:
  Fix Released
Status in apache2 source package in Hirsute:
  Fix Released
Status in apache2 source package in Impish:
  Fix Committed

Bug description:
  The patches introduced for CVE-2021-40438 break existing configs.

  For example on Plesk:
  https://support.plesk.com/hc/en-us/articles/4407366133906-Website-suddenly-started-to-show-500-error-AH10292-Invalid-proxy-UDS-filename

  Upstream pushed some additional fixes for it:
  https://github.com/apache/httpd/commit/6d476a66956a6a81ac8e1f7f419ef0697b9a0b76
  https://github.com/apache/httpd/commit/6d76cbb9100bf34250ffba0bded08e075380be88

  In Debian I guess they will be included also according to
  https://salsa.debian.org/apache-
  team/apache2/-/commit/e36582e866cd7e87600235ff9fcd47b960899e24

  So I think it might be good to include those 2 into Ubuntu as well.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1945311/+subscriptions