-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sun, 28 Mar 2010 17:50:02 +0200 Source: apache2 Binary: apache2.2-common apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-src apache2-dbg Architecture: source i386 all Version: 2.2.9-10+lenny7 Distribution: stable-security Urgency: high Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org> Changed-By: Giuseppe Iuculano <iuculano@debian.org> Description: apache2 - Apache HTTP Server metapackage apache2-dbg - Apache debugging symbols apache2-doc - Apache HTTP Server documentation apache2-mpm-event - Apache HTTP Server - event driven model apache2-mpm-prefork - Apache HTTP Server - traditional non-threaded model apache2-mpm-worker - Apache HTTP Server - high speed threaded model apache2-prefork-dev - Apache development headers - non-threaded MPM apache2-src - Apache source code apache2-suexec - Standard suexec program for Apache 2 mod_suexec apache2-suexec-custom - Configurable suexec program for Apache 2 mod_suexec apache2-threaded-dev - Apache development headers - threaded MPM apache2-utils - utility programs for webservers apache2.2-common - Apache HTTP Server common files Changes: apache2 (2.2.9-10+lenny7) stable-security; urgency=high . * Non-maintainer upload by the Security Team. * Fixed CVE-2010-0408: denial of service via crafted request in mod_proxy_ajp * Fixed CVE-2010-0434: information disclosure via improper handling of headers in subrequests Checksums-Sha1: 853ae262d6aa094b4a9e0517b285319ee6ea76b5 1682 apache2_2.2.9-10+lenny7.dsc 55f967371cf6a7699681655b99644f7e50f34048 147059 apache2_2.2.9-10+lenny7.diff.gz 83e499ffadfc64a833d8c72c2cd9797001baa852 782932 apache2.2-common_2.2.9-10+lenny7_i386.deb 2878e441b071bb018749baf98010d8b21ae5c892 241622 apache2-mpm-worker_2.2.9-10+lenny7_i386.deb 01664c0ae152e7bd55475af036217b6e8ad36127 238526 apache2-mpm-prefork_2.2.9-10+lenny7_i386.deb 08f792769668d8a4a32b5db565d1e050f1ebc491 242016 apache2-mpm-event_2.2.9-10+lenny7_i386.deb 0ed65cfd6852f2212bf8f23fb47c8a4230a38bfb 146222 apache2-utils_2.2.9-10+lenny7_i386.deb 410ebc5ecbc4a0290fe396912e1bc95a1f5a0b50 82508 apache2-suexec_2.2.9-10+lenny7_i386.deb a37e0d3f22c0a11f996a18c6eae9f933d9be9055 84238 apache2-suexec-custom_2.2.9-10+lenny7_i386.deb 71fe76fa4fb3732bd51d8b63e8c29a0c36271322 210052 apache2-prefork-dev_2.2.9-10+lenny7_i386.deb ab04e0a9bec6e7b2a19358ee269247eff23b9766 211200 apache2-threaded-dev_2.2.9-10+lenny7_i386.deb b25485e485dea147b6b26e8e68339099596a4f7d 2317652 apache2-dbg_2.2.9-10+lenny7_i386.deb 4807d40c41d2c254f00f5a73515476fd061367ce 45366 apache2_2.2.9-10+lenny7_all.deb c76c3c828abf3da61d3fb7f0a5cc4d137bf9969b 2060854 apache2-doc_2.2.9-10+lenny7_all.deb 1d04e4f9d0728fb1376fa9e5e3f41e67bfc28630 6737126 apache2-src_2.2.9-10+lenny7_all.deb Checksums-Sha256: db478aff798090731d90d7a5270d31d98932a704a978d532af2aea47413710e2 1682 apache2_2.2.9-10+lenny7.dsc 17403fdbcaa20fde89d12ca79f8790215baa27aec9c1be57c7dce6327781ea12 147059 apache2_2.2.9-10+lenny7.diff.gz 86549768b1d161d11a84aacaf20f2e6b7f0161d9a069b98ed65a2fc5c517e2d1 782932 apache2.2-common_2.2.9-10+lenny7_i386.deb 09b3897b08346ed0812a1c36295cb4609f5134c1b740d92f2676f2b8a5948e33 241622 apache2-mpm-worker_2.2.9-10+lenny7_i386.deb 56d5ada8a2a589e1189ae43fe9350f7c8f91b8c9fa1c4330197969a7836a9ebf 238526 apache2-mpm-prefork_2.2.9-10+lenny7_i386.deb 3c46f63c833ea721f7e09a11c35fab5b676ac692fc7776c96b0780c4315a1f88 242016 apache2-mpm-event_2.2.9-10+lenny7_i386.deb 93a6878ea26093b97b1cffb83c63c4f7f9a3e47251fb897a1a6e2d471349a352 146222 apache2-utils_2.2.9-10+lenny7_i386.deb 111b7bfd83090564ae23a8016ee37087c2ebc1ab88fd9a9447f7f8b026abaea8 82508 apache2-suexec_2.2.9-10+lenny7_i386.deb a500f8300b94438c0263453fbb6cc11a6e710027a06f1f852a0a39eb638b4d6d 84238 apache2-suexec-custom_2.2.9-10+lenny7_i386.deb 91b0074f16b9d9c58d8cf3fc237ef692f0b2c53f7865cbf33065870e052cfb8e 210052 apache2-prefork-dev_2.2.9-10+lenny7_i386.deb 66c4dfc6bc3e3f1f1ddf9c7a9bfc4076047a4294e4db8d5ee9a434c3d3c091fb 211200 apache2-threaded-dev_2.2.9-10+lenny7_i386.deb fd66f0972bf52f673dc43bcf15b3b48a5d0c63cbbf2984f3d81b98e218d6be04 2317652 apache2-dbg_2.2.9-10+lenny7_i386.deb 4e5580ec3286dbb7376cd9e5e2196bdcc0ea3c202f40eead83ccb59e8a144acc 45366 apache2_2.2.9-10+lenny7_all.deb ad364f68772bf311dc64d4a22beae4f00adae2865cc40330c6c1c827f50d4f19 2060854 apache2-doc_2.2.9-10+lenny7_all.deb 68cae21b359ef41c0cd09ebd3bae3d586a1ca54b9fd40eced1218e94620c7563 6737126 apache2-src_2.2.9-10+lenny7_all.deb Files: 58737d2f0024a178d40db6f9356e5b6a 1682 web optional apache2_2.2.9-10+lenny7.dsc f599c83adbced41a7339524c512ae0cd 147059 web optional apache2_2.2.9-10+lenny7.diff.gz 4b5e5364b62eda87bffb60f5bb37f04e 782932 web optional apache2.2-common_2.2.9-10+lenny7_i386.deb 1293d06d3a572a5d0e4e96f201cf32c0 241622 web optional apache2-mpm-worker_2.2.9-10+lenny7_i386.deb 97ff922ee6bf6c19cee164794630256d 238526 web optional apache2-mpm-prefork_2.2.9-10+lenny7_i386.deb 13be25ca0b28f708a0defd5225d1d1d7 242016 web optional apache2-mpm-event_2.2.9-10+lenny7_i386.deb 75ce464a2e479e4806dd55926143be47 146222 web optional apache2-utils_2.2.9-10+lenny7_i386.deb b6443c6a2c94a2ef8627802c0a0cbaa3 82508 web optional apache2-suexec_2.2.9-10+lenny7_i386.deb c43d713e364322ddb3af3bcaf0e4de9d 84238 web extra apache2-suexec-custom_2.2.9-10+lenny7_i386.deb 34369451ba65d4a734034a0dfba31345 210052 devel extra apache2-prefork-dev_2.2.9-10+lenny7_i386.deb a4da7ec33873626b51191c56a5974e8b 211200 devel extra apache2-threaded-dev_2.2.9-10+lenny7_i386.deb 69ccff7beaa71326022cbc06d41fcfa5 2317652 libdevel extra apache2-dbg_2.2.9-10+lenny7_i386.deb 9f02e6acd2828a7cfcb5c9e4866ab120 45366 web optional apache2_2.2.9-10+lenny7_all.deb 5b1f6debc65b7ca2ae8156b21f0d0597 2060854 doc optional apache2-doc_2.2.9-10+lenny7_all.deb afec2194fa17efb6e4096c1019936cd0 6737126 devel extra apache2-src_2.2.9-10+lenny7_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAkuvm3QACgkQNxpp46476arEOQCeM1GZm77DMgCQgyNil5lufpAo vD8An169P0znZCjIj37//gOm+B1MENH5 =iPpY -----END PGP SIGNATURE----- Accepted: apache2-dbg_2.2.9-10+lenny7_i386.deb to main/a/apache2/apache2-dbg_2.2.9-10+lenny7_i386.deb apache2-doc_2.2.9-10+lenny7_all.deb to main/a/apache2/apache2-doc_2.2.9-10+lenny7_all.deb apache2-mpm-event_2.2.9-10+lenny7_i386.deb to main/a/apache2/apache2-mpm-event_2.2.9-10+lenny7_i386.deb apache2-mpm-prefork_2.2.9-10+lenny7_i386.deb to main/a/apache2/apache2-mpm-prefork_2.2.9-10+lenny7_i386.deb apache2-mpm-worker_2.2.9-10+lenny7_i386.deb to main/a/apache2/apache2-mpm-worker_2.2.9-10+lenny7_i386.deb apache2-prefork-dev_2.2.9-10+lenny7_i386.deb to main/a/apache2/apache2-prefork-dev_2.2.9-10+lenny7_i386.deb apache2-src_2.2.9-10+lenny7_all.deb to main/a/apache2/apache2-src_2.2.9-10+lenny7_all.deb apache2-suexec-custom_2.2.9-10+lenny7_i386.deb to main/a/apache2/apache2-suexec-custom_2.2.9-10+lenny7_i386.deb apache2-suexec_2.2.9-10+lenny7_i386.deb to main/a/apache2/apache2-suexec_2.2.9-10+lenny7_i386.deb apache2-threaded-dev_2.2.9-10+lenny7_i386.deb to main/a/apache2/apache2-threaded-dev_2.2.9-10+lenny7_i386.deb apache2-utils_2.2.9-10+lenny7_i386.deb to main/a/apache2/apache2-utils_2.2.9-10+lenny7_i386.deb apache2.2-common_2.2.9-10+lenny7_i386.deb to main/a/apache2/apache2.2-common_2.2.9-10+lenny7_i386.deb apache2_2.2.9-10+lenny7.diff.gz to main/a/apache2/apache2_2.2.9-10+lenny7.diff.gz apache2_2.2.9-10+lenny7.dsc to main/a/apache2/apache2_2.2.9-10+lenny7.dsc apache2_2.2.9-10+lenny7_all.deb to main/a/apache2/apache2_2.2.9-10+lenny7_all.deb