-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Thu, 06 Aug 2009 09:01:34 -0500 Source: apr Binary: libapr1 libapr1-dbg libapr1-dev Architecture: source amd64 Version: 1.2.7-9 Distribution: oldstable-security Urgency: high Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org> Changed-By: Peter Samuelson <peter@p12n.org> Description: libapr1 - The Apache Portable Runtime Library libapr1-dbg - The Apache Portable Runtime Library - Development Headers libapr1-dev - The Apache Portable Runtime Library - Development Headers Changes: apr (1.2.7-9) oldstable-security; urgency=high . * Fix CVE-2009-2412: overflow in pool allocations, where size alignment was taking place. Files: 89662625fd7a34ceb514087de869d918 856 libs optional apr_1.2.7-9.dsc 021ef3aa5b3a9fc021779a0b6a6a4ec9 26613 libs optional apr_1.2.7-9.diff.gz aea926cbe588f844ad9e317157d60175 1102370 libs optional apr_1.2.7.orig.tar.gz 6b51dc29ea4defa975902d246188086f 111664 libs optional libapr1_1.2.7-9_amd64.deb b5d6b4e7c628dffe867159b54b6c82f1 348120 libdevel optional libapr1-dev_1.2.7-9_amd64.deb bb1a4aa5768fa012201ad1e72bc27e93 187302 libdevel extra libapr1-dbg_1.2.7-9_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iD4DBQFKezGOXk7sIRPQRh0RAmz/AJjPU8MXhXYkc11q80Z/SUXYLYLBAJ0f47wW 0WsX3PKJXrGc9CgV6ZKmVg== =5loq -----END PGP SIGNATURE----- Accepted: apr_1.2.7-9.diff.gz to main/a/apr/apr_1.2.7-9.diff.gz apr_1.2.7-9.dsc to main/a/apr/apr_1.2.7-9.dsc libapr1-dbg_1.2.7-9_amd64.deb to main/a/apr/libapr1-dbg_1.2.7-9_amd64.deb libapr1-dev_1.2.7-9_amd64.deb to main/a/apr/libapr1-dev_1.2.7-9_amd64.deb libapr1_1.2.7-9_amd64.deb to main/a/apr/libapr1_1.2.7-9_amd64.deb