-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Fri, 13 May 2011 23:52:15 +0200 Source: apr Binary: libapr1 libapr1-dev libapr1-dbg Architecture: source i386 Version: 1.4.2-6+squeeze1 Distribution: stable-security Urgency: high Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org> Changed-By: Stefan Fritsch <sf@debian.org> Description: libapr1 - The Apache Portable Runtime Library libapr1-dbg - The Apache Portable Runtime Library - Debugging Symbols libapr1-dev - The Apache Portable Runtime Library - Development Headers Changes: apr (1.4.2-6+squeeze1) stable-security; urgency=high . * Fix DoS in apr_fnmatch (CVE-2011-0419) which can be exploited via Apache HTTPD's mod_autoindex. Checksums-Sha1: b4f839dd7feb598eb21b025ad6aac65bb9bc8bf7 1396 apr_1.4.2-6+squeeze1.dsc d48324efb0280749a5d7ccbb053d68545c568b4b 949945 apr_1.4.2.orig.tar.gz fb5ca4f29be9db947622e2a87680ed43ccb34cec 26290 apr_1.4.2-6+squeeze1.diff.gz 61363dda6eaf58c31ad5e90847a64fae95886709 85818 libapr1_1.4.2-6+squeeze1_i386.deb a2c2bae9846d543960dc677b584f26d0d3ef1da1 1025950 libapr1-dev_1.4.2-6+squeeze1_i386.deb e9584e55e30a1d6bb05cc0fd6ef13f930e5838ff 23868 libapr1-dbg_1.4.2-6+squeeze1_i386.deb Checksums-Sha256: d9677e6d64a5ce94c4c8e7d056ad35b784c1cc9d7aa3ee26b7dc67fd59eb7fc7 1396 apr_1.4.2-6+squeeze1.dsc 6a0291d6f6a59d5eab5ae5441c37b78b17f7a1a2fa1478741b7178f5fbc33ebe 949945 apr_1.4.2.orig.tar.gz 8a7df4e7f0032edab24263cc187e054d7c03fb8c240cbce64c6a10a228f34435 26290 apr_1.4.2-6+squeeze1.diff.gz d9763a4480d3526ab2582a8e6fa0e38e4c16217e5fe7a7be86ea8da8569dc275 85818 libapr1_1.4.2-6+squeeze1_i386.deb cde1f3e242776bedf54b6a2a06daec8213721e54f2dceea3679f8f9bfde8013d 1025950 libapr1-dev_1.4.2-6+squeeze1_i386.deb 533edebdf55704c9de95d19da7a4fe69a3a6ddaa04e9ba3375bdb060a0ba32de 23868 libapr1-dbg_1.4.2-6+squeeze1_i386.deb Files: 0a50891ab5f6cb2fe30c180d4ceca7b2 1396 libs optional apr_1.4.2-6+squeeze1.dsc fc80cb54f158c2674f9eeb47a1f672cd 949945 libs optional apr_1.4.2.orig.tar.gz 2bdebd1fed55c19e24594ca04f845bd0 26290 libs optional apr_1.4.2-6+squeeze1.diff.gz 76ae2fb4f32cd0d9095eba303d5376ef 85818 libs optional libapr1_1.4.2-6+squeeze1_i386.deb 59521f928ee05e942402bbba0cf4c0cd 1025950 libdevel optional libapr1-dev_1.4.2-6+squeeze1_i386.deb c8141323118bc888488a860d7f976a95 23868 debug extra libapr1-dbg_1.4.2-6+squeeze1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iD8DBQFNzbhgbxelr8HyTqQRAkTjAKCJSfpYIvICOE6ksRW6B7Swg4TIRwCguIGX 0oYD8uHLDeIekI4QuDAZxn8= =gJ6+ -----END PGP SIGNATURE----- Accepted: apr_1.4.2-6+squeeze1.diff.gz to main/a/apr/apr_1.4.2-6+squeeze1.diff.gz apr_1.4.2-6+squeeze1.dsc to main/a/apr/apr_1.4.2-6+squeeze1.dsc libapr1-dbg_1.4.2-6+squeeze1_i386.deb to main/a/apr/libapr1-dbg_1.4.2-6+squeeze1_i386.deb libapr1-dev_1.4.2-6+squeeze1_i386.deb to main/a/apr/libapr1-dev_1.4.2-6+squeeze1_i386.deb libapr1_1.4.2-6+squeeze1_i386.deb to main/a/apr/libapr1_1.4.2-6+squeeze1_i386.deb