Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-lts-changes@lists.debian.org> , <dispatch@tracker.debian.org>
Subject: Accepted apache2 2.4.25-3+deb9u12 (source) into oldoldstable
Date: Tue, 01 Feb 2022 20:40:12 +0000
Signed by: Anton Gladky <gladk@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 01 Feb 2022 19:18:01 +0100
Source: apache2
Architecture: source
Version: 2.4.25-3+deb9u12
Distribution: stretch-security
Urgency: medium
Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>
Changed-By: Anton Gladky <gladk@debian.org>
Changes:
 apache2 (2.4.25-3+deb9u12) stretch-security; urgency=medium
 .
   * Non-maintainer upload by the LTS Security Team.
   * CVE-2021-44790: A buffer overflow in mod_lua may result in denial of service
                     or potentially the execution of arbitrary code.
   * CVE-2021-44224: When operating as a forward proxy, Apache was depending on
                     the setup suspectible to denial of service or Server Side
                     Request forgery.
Checksums-Sha1:
 564927155f74804af8afa559441aa5c42d7989ab 2990 apache2_2.4.25-3+deb9u12.dsc
 bab47e7073fa47c303a4de845c876356f279f196 823332 apache2_2.4.25-3+deb9u12.debian.tar.xz
 70d4a5091711ebd9a4114dc3ac4a112894affb9f 7414 apache2_2.4.25-3+deb9u12_source.buildinfo
Checksums-Sha256:
 a14d530736588cd4eb60f6c0a949788a32ce790cf94cd542f6b3bda0952cba73 2990 apache2_2.4.25-3+deb9u12.dsc
 1700b4984ebdb9d49a8d09190aabd7efbd8ccefbec47c5562212d3871aa11416 823332 apache2_2.4.25-3+deb9u12.debian.tar.xz
 f5ee2a0223d6032898793ef9c2971da4e655b3e805c0784cf8fc9d7c8e5a6962 7414 apache2_2.4.25-3+deb9u12_source.buildinfo
Files:
 348d5d3378d114f8d0b4f38127a5a1f5 2990 httpd optional apache2_2.4.25-3+deb9u12.dsc
 4cb87c8c3c4e525b1bc5afd5740b04a3 823332 httpd optional apache2_2.4.25-3+deb9u12.debian.tar.xz
 e8fe0947ac125c41f3f3b2fc7b189cf7 7414 httpd optional apache2_2.4.25-3+deb9u12_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=saSN
-----END PGP SIGNATURE-----

News for package apache2