Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-lts-changes@lists.debian.org> , <dispatch@tracker.debian.org>
Subject: Accepted apache2 2.4.38-3+deb10u9 (source) into oldstable
Date: Thu, 02 Mar 2023 15:00:18 +0000
Signed by: Mark Lee Garrett <lee+gnupg@rocketjump.eu>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 02 Mar 2023 15:26:27 +0100
Source: apache2
Architecture: source
Version: 2.4.38-3+deb10u9
Distribution: buster-security
Urgency: medium
Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>
Changed-By: Lee Garrett <debian@rocketjump.eu>
Changes:
 apache2 (2.4.38-3+deb10u9) buster-security; urgency=medium
 .
   * Non-maintainer upload by the LTS Team.
   * CVE-2006-20001: Fix error path for "Not" prefix parsing.
   * CVE-2022-36760: HTTP Requests vulnerability in mod_proxy_ajp
   * CVE-2022-37436: Early truncation of response headers
   * CVE-2021-33193: mod_proxy HTTP/2 validation bypass
   * Add tests from master branch for CVE-2019-0215, CVE-2020-1927
   * Update debian/gbp.conf to use the branch "debian/buster"
   * Add debian/.gitlab-ci.yml
Checksums-Sha1:
 5aecfb41a2756b7b3a02e83aa19cab7796a75b82 3958 apache2_2.4.38-3+deb10u9.dsc
 4df6c477ec4fd6b84e5c713de323387ebe675e30 1098824 apache2_2.4.38-3+deb10u9.debian.tar.xz
 09c1f057050661f7159587c235d9084f1633ffb3 12957 apache2_2.4.38-3+deb10u9_amd64.buildinfo
Checksums-Sha256:
 449b230e9de3142f203e53f20e1cbe374f455587e6498d7cd4b5f24f5cbfcf72 3958 apache2_2.4.38-3+deb10u9.dsc
 513270c229ae6cbb6be6a57bf053a4f8e2792965a56654678a3bf0c618a82cc6 1098824 apache2_2.4.38-3+deb10u9.debian.tar.xz
 a1469db6d76d4230c09e455a689f7098fc636e8885f8a9aa890dfb97256a6ce4 12957 apache2_2.4.38-3+deb10u9_amd64.buildinfo
Files:
 33b665aea5c6528297ef4478e7d76f7c 3958 httpd optional apache2_2.4.38-3+deb10u9.dsc
 377ecf7d65192e8ed3262dadd0459f8c 1098824 httpd optional apache2_2.4.38-3+deb10u9.debian.tar.xz
 b2bc6498dae63f1d43add586808a01df 12957 httpd optional apache2_2.4.38-3+deb10u9_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=GGy0
-----END PGP SIGNATURE-----
News for package apache2
