[pkg-lighttpd] r569 - lighttpd/trunk/debian
Arno Töll
atoell-guest at alioth.debian.org
Tue Dec 20 10:37:28 UTC 2011
Author: atoell-guest
Date: 2011-12-20 10:37:27 +0000 (Tue, 20 Dec 2011)
New Revision: 569
Modified:
lighttpd/trunk/debian/changelog
Log:
Update changelog to denote bug we close
Modified: lighttpd/trunk/debian/changelog
===================================================================
--- lighttpd/trunk/debian/changelog 2011-12-20 01:05:43 UTC (rev 568)
+++ lighttpd/trunk/debian/changelog 2011-12-20 10:37:27 UTC (rev 569)
@@ -1,7 +1,7 @@
lighttpd (1.4.30-1) unstable; urgency=medium
* New upstream release
- + Fix integer overflow (CVE-2011-4362)
+ + Fix integer overflow (CVE-2011-4362) (Closes: #652726)
+ Fix attack vector as disclosed by the SSL BEAST attack (related:
CVE-2011-3389). Note: If you are upgrading from an older version you need
to change your configuration to mitigate effects of the attack. See the
@@ -22,7 +22,7 @@
sysvinit, ship systemd and tempfiles.d configuration files. Thanks to
Michael Stapelberg for providing the required files (Closes: #652442)
- -- Arno Töll <debian at toell.net> Tue, 20 Dec 2011 01:56:59 +0100
+ -- Arno Töll <debian at toell.net> Tue, 20 Dec 2011 11:36:09 +0100
lighttpd (1.4.29-1) unstable; urgency=low
More information about the pkg-lighttpd-maintainers
mailing list