Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-changes@lists.debian.org>
Subject: Accepted apache2 2.4.38-3+deb10u6 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
Date: Sat, 09 Oct 2021 20:22:40 +0000
Signed by: Xavier Guimard <yadd@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 30 Sep 2021 05:50:49 +0200
Source: apache2
Architecture: source
Version: 2.4.38-3+deb10u6
Distribution: buster-security
Urgency: high
Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>
Changed-By: Yadd <yadd@debian.org>
Changes:
 apache2 (2.4.38-3+deb10u6) buster-security; urgency=high
 .
   [ Yadd, Moritz Muehlenhoff ]
   * Initialize the request fields on read failure to avoid NULLs
     (Closes: CVE-2021-34798)
   * mod_proxy_uwsgi: Fix PATH_INFO setting for generic worker
     (Closes: CVE-2021-36160)
   * Fix ap_escape_quotes with pre-escaped quotes (Closes: CVE-2021-39275)
   * Sanity checks on the configured UDS path (Closes: CVE-2021-40438)
Checksums-Sha1: 
 105414cf65ab02bd16546d322c67ca728cff1f72 3263 apache2_2.4.38-3+deb10u6.dsc
 6ee19a7b936a6ddbbf81b313c4a8b38bf232b40e 9187294 apache2_2.4.38.orig.tar.gz
 ac366ce4dc4ab08473134fb8c4ee9ce57d8dc0d1 1077780 apache2_2.4.38-3+deb10u6.debian.tar.xz
Checksums-Sha256: 
 c06c2a3a11ef03ac3e9833bde8f3a7afb25a94e3acdd2893a49cea848857b350 3263 apache2_2.4.38-3+deb10u6.dsc
 38d0b73aa313c28065bf58faf64cec12bf7c7d5196146107df2ad07541aa26a6 9187294 apache2_2.4.38.orig.tar.gz
 64138aef2a4ca957880ceeb23451fa916f41027ecb445324c4804792ee67a595 1077780 apache2_2.4.38-3+deb10u6.debian.tar.xz
Files: 
 8f7bb246469d1a4839107ac063724e0d 3263 httpd optional apache2_2.4.38-3+deb10u6.dsc
 626083caac6d85a048abac6d5ea61e5b 9187294 httpd optional apache2_2.4.38.orig.tar.gz
 3332175b0710fdbe5eff29b17abdde04 1077780 httpd optional apache2_2.4.38-3+deb10u6.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=TM6g
-----END PGP SIGNATURE-----

News for package apache2