-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 08 Feb 2025 20:59:37 +0100 Source: libapache-mod-jk Architecture: source Version: 1:1.2.50-1 Distribution: unstable Urgency: medium Maintainer: Debian Java Maintainers <pkg-java-maintainers@lists.alioth.debian.org> Changed-By: Markus Koschany <apo@debian.org> Closes: 1082713 1094590 Changes: libapache-mod-jk (1:1.2.50-1) unstable; urgency=medium . * New upstream version 1.2.50. (Closes: #1094590) - Fix CVE-2024-46544: Incorrect default permissions for the memory mapped file configured by the JkShmFile directive on Unix like systems allows local users to view and/or modify the contents of the shared memory containing mod_jk configuration and status information. This could result in information disclosure and/or denial of service. (Closes: #1082713) * Declare compliance with Debian Policy 4.7.0. Checksums-Sha1: 7135c03c05e6fb8b6c520d1328e5243f62ee1973 2545 libapache-mod-jk_1.2.50-1.dsc 4ba5bd5931d6305d4808e815b93cea924f101bd9 1738508 libapache-mod-jk_1.2.50.orig.tar.gz 859c219741f127d3a9e6ee612351741050474213 833 libapache-mod-jk_1.2.50.orig.tar.gz.asc 773d642a74899f6f2c961b6aae4dba0e2baba899 60888 libapache-mod-jk_1.2.50-1.debian.tar.xz 63a7c21ab7ffdd5bc840dec86dfdf75475b02bb3 12293 libapache-mod-jk_1.2.50-1_amd64.buildinfo Checksums-Sha256: 411abdffe804ecd592578513b949e3dac8dd0a34827dce680cd8c067caf9a2f1 2545 libapache-mod-jk_1.2.50-1.dsc c669727b432c729a4b9f4fa663991298222fc40bd8101b33350074bf5a444b03 1738508 libapache-mod-jk_1.2.50.orig.tar.gz 5299d27998b9307c187e207662830b07688e95ec47efb210033dc12b233ffbf3 833 libapache-mod-jk_1.2.50.orig.tar.gz.asc fd649b49b213afcc60ac3e6af86cd7452d7f5b5d5c299011a590f458a3d0ae39 60888 libapache-mod-jk_1.2.50-1.debian.tar.xz 07aca10d9af2a7747ab2ebb174472fca768c6324e47763cdaaa2637f30359f03 12293 libapache-mod-jk_1.2.50-1_amd64.buildinfo Files: 7d35916f011848bb8b7f2fac172a0577 2545 httpd optional libapache-mod-jk_1.2.50-1.dsc 1335e7c14ca000620c1d827f8192c069 1738508 httpd optional libapache-mod-jk_1.2.50.orig.tar.gz c27eac9e9304e7b90bcd5ec98c6a38b5 833 httpd optional libapache-mod-jk_1.2.50.orig.tar.gz.asc 1eaffe62768ec6c98e501988f2f91414 60888 httpd optional libapache-mod-jk_1.2.50-1.debian.tar.xz 3e1ca1cf960d9e11b377223fc3ff141f 12293 httpd optional libapache-mod-jk_1.2.50-1_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQKjBAEBCgCNFiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAmenuVBfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQPHGFwb0BkZWJp YW4ub3JnAAoJENmtFLlRO1HkH28P/jIiuGJa93eKOvxS80sEdQQCXmZKfbiwTapp 2RNiGM8lGwqJWq0kzdbYXLq4aPio1Q0FbbR13D3kYB4+8bFwbvrtYcI9KAzRC45K bxS21eu/a63fYYY1/ZK2Igm1z+N7T7LYoglpkbKWEmueXAIPe5udUWa+5VAD4GDT G/w24NxgLje2k/Wrv01Ea0lEe/zARjSDZtTHCkXQAhjTZ0I+d35KHWsrqmMXAbjI V2LBDkY7IGXbeq3DEi8Y3Gy1Qjt7M4jozZt8P2hOHtercYObxsPTZ+ZC9fEHT3O7 mikwBT8Sh+d95OdQaIvBujfETIdKjAYPaZQR/2jOCmlugvSAvgPZ89G0IoXpBB0a 9Co7j4QMGZ2+S37u9mpWlWHyvD5BX1hiqH/KSr5ZIZ8hDHbxWkWPsfPeK7j5Q/hg cq/Bt0efhDxxHI9xWK71AKnfyrstubOwb/sowBBTDQSpJ7n7SgM5ZJytCjUlZ4hH 2TF8ThfTy+RjOAGsIZm3LjwxSkKWxw7ryxwL3VIqYG6bFuYmIhc9yDEKVADFJTAw 6HwHVSrMjzkgB195HfGRjXQyOoOQFQOTMxAYmyfcdn5OMQmbJK3Fj+PloYePdj8f fiw+BSYoG6IzO2+HJnYFf+redy4/vr9xWufoHCS9BfS8k6+DtglZyPeJCVGowDzU 5aBO7WJU =n5vJ -----END PGP SIGNATURE-----
