Ubuntu
apache2 package

apache 2.2.19 lucid

Asked by dan

i'm trying to upgrade apache 2.2.14 on lucid 10.04 lts server, however apt-get continually tells me there's no upgrades available. why is this? i can clearly see on apache's website that 2.2.19 was released in may. it's almost the end of june and lucid's still running what's essentially an antiquated version. what gives, and how can i get this upgraded?
thanks,
Dan

Question information

Language:
English Edit question
Status:
Answered
For:
Ubuntu apache2 Edit question
Assignee:
No assignee Edit question
Last query:
Last reply:
Revision history for this message
actionparsnip (andrew-woodhead666) said : 		#1

Because the repos have the 2.2.14 version. Ubuntu is not a rolling release so you will not see the latest packages in the official repos. You may be able to find a PPA which is a 3rd party repo which is managed by another user and may give the later version.
https://launchpad.net/ubuntu/+ppas

Revision history for this message
dan (k-dan) said : 		#2

so how then, might i update apache to resolve the CVE-2011-1928 and CVE-2011-0419 vulnerabilities, which is currently causing our site to fail PCI compliance on our old servers? these CVE numbers are not mentioned in the changelog for apache-2.2.14-5ubuntu8.4 (http://changelogs.ubuntu.com/changelogs/pool/main/a/apache2/apache2_2.2.14-5ubuntu8.4/changelog). therefore i assume they haven't been patched. is the only way to update apache to update the entire distribution? isn't that was the LTS is all about?

Revision history for this message
actionparsnip (andrew-woodhead666) said : 		#3

If you submit a bug and the security benefits are significant, the package will be updated sooner.

The link I gave will maybe help you find a PPA

Revision history for this message
Phil Norbeck (ptn107) said : 		#4

You can upgrade your apache2 to version 2.2.19 from my ppa if you wish:

ppa:ptn107/ppa

However, the Ubuntu devs will not be providing official support for it on any version before Oneiric.

Revision history for this message
Jason Joseph (jjoseph) said : 		#5

Hey Phil, your PPA worked awesome on my Lucid machine but unfortunately my production server is Karmic. Will this PPA work for this machine as well or is it not going to work there? Thanks!

Can you help with this problem?

Provide an answer of your own, or ask dan for more information if necessary.

To post a message you must log in.