|debian changes | (download)
2 1 + 1 - 0 !
4 1 + 3 - 0 !
10 9 + 1 - 0 !
3 files changed, 11 insertions(+), 5 deletions(-)
<short summary of the patch>
TODO: Put a short summary on the line above and replace this paragraph
with a longer explanation of this change. Complete the meta-information
with other relevant fields (see below for details). To make it easier, the
information below has been extracted from the changelog. Adjust it or drop
apt-cacher-ng (2-2) testing; urgency=high
* Special version only for Debian Stretch, solving moderate security issues:
+ hardening against HTTP header splitting attack (no user input printed in
the HTTP headers anymore; backport from Sid, related to CVE-2017-7443)
+ hardening against unintended or malicious triggering of hidden space
allocation, by disabling the fallocate completely. This is ultima ratio,
trading code simplicity for fragmentation avoiding efforts; a smarter
solution is found in upstream version 3; closes: #856635)
+ handle a corner case of bad TLS handshake with invalid certificate
(related to #839751)