Adding debian version 2.4.38-3+deb10u8.debian/2.4.38-3+deb10u8 debian

Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
author: Daniel Baumann <daniel.baumann@progress-linux.org> 2024-05-07 02:04:07 +0000
committer: Daniel Baumann <daniel.baumann@progress-linux.org> 2024-05-07 02:04:07 +0000
commit: 1221c736f9a90756d47ea6d28320b6b83602dd2a (patch)
tree: b453ba7b1393205258c9b098a773b4330984672f /debian/patches/CVE-2019-10098.patch
parent: Adding upstream version 2.4.38. (diff)
download: apache2-debian.tar.xz
apache2-debian.zip
1 files changed, 20 insertions, 0 deletions
diff --git a/debian/patches/CVE-2019-10098.patch b/debian/patches/CVE-2019-10098.patch
new file mode 100644
index 0000000..b2c66b2
--- /dev/null
+++ b/debian/patches/CVE-2019-10098.patch
@@ -0,0 +1,20 @@
+Description: patch to set PCRE_DOTALL by default
+Author: ylavic
+Origin: upstream, https://svn.apache.org/viewvc?view=revision&revision=1864192
+Bug: https://security-tracker.debian.org/tracker/CVE-2019-10098
+Forwarded: not-needed
+Reviewed-By: Xavier Guimard <yadd@debian.org>
+Last-Update: 2019-08-18
+
+--- a/server/util_pcre.c
++++ b/server/util_pcre.c
+@@ -120,7 +120,8 @@
+  *            Compile a regular expression       *
+  *************************************************/
+ 
+-static int default_cflags = AP_REG_DOLLAR_ENDONLY;
++static int default_cflags = AP_REG_DOTALL |
++                            AP_REG_DOLLAR_ENDONLY;
+ 
+ AP_DECLARE(int) ap_regcomp_get_default_cflags(void)
+ {
author	Daniel Baumann <daniel.baumann@progress-linux.org>	2024-05-07 02:04:07 +0000
committer	Daniel Baumann <daniel.baumann@progress-linux.org>	2024-05-07 02:04:07 +0000
commit	1221c736f9a90756d47ea6d28320b6b83602dd2a (patch)
tree	b453ba7b1393205258c9b098a773b4330984672f /debian/patches/CVE-2019-10098.patch
parent	Adding upstream version 2.4.38. (diff)
download	apache2-debian.tar.xz apache2-debian.zip