-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Thu, 29 Dec 2011 12:09:14 +0100 Source: apache2 Binary: apache2.2-common apache2.2-bin apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-mpm-itk apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-dbg Architecture: source i386 all Version: 2.2.21-4 Distribution: unstable Urgency: low Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org> Changed-By: Stefan Fritsch <sf@debian.org> Description: apache2 - Apache HTTP Server metapackage apache2-dbg - Apache debugging symbols apache2-doc - Apache HTTP Server documentation apache2-mpm-event - Apache HTTP Server - event driven model apache2-mpm-itk - multiuser MPM for Apache 2.2 apache2-mpm-prefork - Apache HTTP Server - traditional non-threaded model apache2-mpm-worker - Apache HTTP Server - high speed threaded model apache2-prefork-dev - Apache development headers - non-threaded MPM apache2-suexec - Standard suexec program for Apache 2 mod_suexec apache2-suexec-custom - Configurable suexec program for Apache 2 mod_suexec apache2-threaded-dev - Apache development headers - threaded MPM apache2-utils - utility programs for webservers apache2.2-bin - Apache HTTP Server common binary files apache2.2-common - Apache HTTP Server common files Closes: 440058 590096 649888 Changes: apache2 (2.2.21-4) unstable; urgency=low . [ Stefan Fritsch ] . * Security: Fix broken patch for CVE-2011-3607 (Integer overflow in ap_pregsub). * Optimize debian/rules again to improve build time by doing most work in a single parallelized "build-%" target. . [ Arno Töll ] . * Fix "Suggest removing DefaultType from apache2.conf" change the DefaultType from text/plain to None. This lets the browser guess a proper MIME type instead of being forced to treat a given file according to our default type (Closes: #440058) * Fix "add pre-rotate hook to logrotate script" execute scripts in /etc/logrotate.d/httpd-prerotate if available (Closes: #590096). * Fix "Hide /icons index" Disables indexes on the icon directory. By upgrading to Debian's 3.0/quilt source format also images don't need to be generated at build time anymore. Hence, the icon date can no longer lead to information disclosure (Closes: #649888). * Upgrade package to 3.0/quilt. + Remove uuencoded images, keep them in their binary format in debian/icons + Upgrade to quilt from dpatch and refresh all patches by keeping all hunks unchanged. Remove the `001_branding' patch by supplying -DPLATFORM at build time where needed Move the 200_cp_suexec.dpatch patch and 202_suexec-custom.dpatch patch to debian/rules. 200_cp_suexec.dpatch was a script, not a patch which is not supported by quilt. * Rewrite debian/rules and base it on dh(1). + use overrides where possible, replace some debhelper calls by our own implementation where needed. That's required since the Apache package is compiled in parts several times for each MPM once. + move some install operations to the their respective .install files + Support dpkg-buildflags now, which also enables by default hardening flags. Thus, remove them from their explicit appearance in debian/rules + Remove DEB_BUILD_OPTIONS legacy support. It comes for free when using dh(1)/dpkg-buildflags(1). * Push debhelper compatibility to 8 * Remove unused Lintian overrides for the Debian source package remove and redundant priorities in debian/control. * Add myself to Uploaders Checksums-Sha1: 9556e96b78cd402a55daf76d587024b2a792f6ff 2207 apache2_2.2.21-4.dsc 430c01f779de93d63ae6924ba8233fb7fcc36f2d 211668 apache2_2.2.21-4.debian.tar.gz e225177f67f57e070435c67f8f8f7b535d2f1713 315198 apache2.2-common_2.2.21-4_i386.deb 3f7e44d1df44821e4ce2f6a27963817310783ca5 1455348 apache2.2-bin_2.2.21-4_i386.deb 2f1fa9e2c3ffa8a710c33757b6157e24dc50e326 2190 apache2-mpm-worker_2.2.21-4_i386.deb f4a925808c16c11d571f6439adf870652fc9a1e6 2292 apache2-mpm-prefork_2.2.21-4_i386.deb ab53a0e341c116e800edb7c3ed45e002e515de18 2256 apache2-mpm-event_2.2.21-4_i386.deb 201f44ed2ced3317345fa0202940463b7e3dcc5e 2280 apache2-mpm-itk_2.2.21-4_i386.deb 3b0fb293938ad6a61a22b36ddfbc6a47233c00ba 169840 apache2-utils_2.2.21-4_i386.deb 435ce8ead5a6e69392c2fbba463e3c0ea8a4e07d 104078 apache2-suexec_2.2.21-4_i386.deb a54021d9791ee72a641af2fddb747022b226536d 105740 apache2-suexec-custom_2.2.21-4_i386.deb 7ca7d55d9832d2dc15cd1d0d1e207456bc0a797d 1390 apache2_2.2.21-4_i386.deb 3f6aeacdd9efae7a8bac6d7ec587645e98d9998d 2664084 apache2-doc_2.2.21-4_all.deb b3152b80f6335b9e73c9ccce287aa47c11a4daa9 137974 apache2-prefork-dev_2.2.21-4_i386.deb e6405514a87a3356e535ab3d48e80ae576cb3c44 139154 apache2-threaded-dev_2.2.21-4_i386.deb a7e26b1fd265b5ef972ce28e3f8577c317325411 2797042 apache2-dbg_2.2.21-4_i386.deb Checksums-Sha256: 156fc752a2a8092c7efe742506c7aac43fa23590d7240105c7d1295593dc3e97 2207 apache2_2.2.21-4.dsc 613aa54bcae87181b2bd67b39a16346f26b13cb47c0c8117a25d88b01805ae04 211668 apache2_2.2.21-4.debian.tar.gz ea4cdd073d3f19223fc649b956e60da0dfac714174451ae96b68a19c14ff47e9 315198 apache2.2-common_2.2.21-4_i386.deb dd09abb411c71b2e2435b31ace8d8f6ba9f85f59f301ecec7a8b1d730d67be95 1455348 apache2.2-bin_2.2.21-4_i386.deb 28ab01d351db3d73b16bfc185b213f3e0af0db33c130f15aa06f63c93a82ad61 2190 apache2-mpm-worker_2.2.21-4_i386.deb 5a7a8910ea9ea380c6a74c6e33086788dca9292236c729564ab5b7e5db8851f1 2292 apache2-mpm-prefork_2.2.21-4_i386.deb 9bc43552ed2754fb1ac30b2aeadb1a907ce2622b34b46bb0453880361304be1a 2256 apache2-mpm-event_2.2.21-4_i386.deb 19f8e083c8fd033c17eaa84080db18963c3ca27b4cfe4b0cd70534a6da6027cb 2280 apache2-mpm-itk_2.2.21-4_i386.deb bdc323289fef253f35061d2da554fedf3939dc6b88b17a77b31daade85bf4199 169840 apache2-utils_2.2.21-4_i386.deb 65afd3dfd308cee689fa04d8615ea8e0c9d8bdddc538eaab3d087cf8a1f6b9bc 104078 apache2-suexec_2.2.21-4_i386.deb 3780448cf3aaf059f4f7cb03f721363f976cf0fafb1b2afa3895c4469a2c3b7a 105740 apache2-suexec-custom_2.2.21-4_i386.deb edccbc048d52c0c37642c6f3c3e46641084c9f9e5f282859e19dbbce392861c5 1390 apache2_2.2.21-4_i386.deb 84b1106de3f635c14fac4b64e9929246098a21bf58a82ed1eeec74a4b143534c 2664084 apache2-doc_2.2.21-4_all.deb 2be27c499202c35b0024a933ce71252de9604bdfb2b749733835e174389d48ff 137974 apache2-prefork-dev_2.2.21-4_i386.deb c682ba301d92bce85e57ada4d5b69d179462b0462d2388140c052832b74e07d4 139154 apache2-threaded-dev_2.2.21-4_i386.deb 2979f6ba1b4f79770894f6eca84453dc341f4715bc59e8251f04e52d5d383033 2797042 apache2-dbg_2.2.21-4_i386.deb Files: f58a7afe15e7fe61b6dbe38ab9392d80 2207 httpd optional apache2_2.2.21-4.dsc 3bb9fd9ed4d4eb3b0c02d765ae158102 211668 httpd optional apache2_2.2.21-4.debian.tar.gz 1b6e9ee4c49860ec44cc3dbb547596a9 315198 httpd optional apache2.2-common_2.2.21-4_i386.deb 982ae3a99d825fc2cc4010f4e77ec7b6 1455348 httpd optional apache2.2-bin_2.2.21-4_i386.deb b5507e3d9faa153bcb032038fc921c2e 2190 httpd optional apache2-mpm-worker_2.2.21-4_i386.deb 2c0bf7d2d7c259426f20a309240137df 2292 httpd optional apache2-mpm-prefork_2.2.21-4_i386.deb dd28dc130e68b447255a9d1e5d5a5d1f 2256 httpd optional apache2-mpm-event_2.2.21-4_i386.deb 1e43a472ac948ee0c8846e314f79d946 2280 httpd extra apache2-mpm-itk_2.2.21-4_i386.deb ceb1edfb0bc5baa2f9e0cfa5edba45bd 169840 httpd optional apache2-utils_2.2.21-4_i386.deb b14e2e2102cddc4bb9508356783d7e39 104078 httpd optional apache2-suexec_2.2.21-4_i386.deb e7a98d427a00e82071cba3dc8923c6dd 105740 httpd extra apache2-suexec-custom_2.2.21-4_i386.deb a49f43573697c59f7918ce33ded84969 1390 httpd optional apache2_2.2.21-4_i386.deb 3ad2fd21c33e9129588be2c7e61c9987 2664084 doc optional apache2-doc_2.2.21-4_all.deb ca708b8da48a866021034765058a4285 137974 httpd extra apache2-prefork-dev_2.2.21-4_i386.deb f417d9bbeb9b80ae60f6d67cf4582516 139154 httpd extra apache2-threaded-dev_2.2.21-4_i386.deb 05778c4202e8ccf5bf0c9eb3d67d5c17 2797042 debug extra apache2-dbg_2.2.21-4_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iD8DBQFO/EtJbxelr8HyTqQRAhNIAJ9j71nvlGRi8FaAhkaSZCf21yrqYACfZNij XwGU0flaxOlIhyQjqb+62Uk= =kjGX -----END PGP SIGNATURE----- Accepted: apache2-dbg_2.2.21-4_i386.deb to main/a/apache2/apache2-dbg_2.2.21-4_i386.deb apache2-doc_2.2.21-4_all.deb to main/a/apache2/apache2-doc_2.2.21-4_all.deb apache2-mpm-event_2.2.21-4_i386.deb to main/a/apache2/apache2-mpm-event_2.2.21-4_i386.deb apache2-mpm-itk_2.2.21-4_i386.deb to main/a/apache2/apache2-mpm-itk_2.2.21-4_i386.deb apache2-mpm-prefork_2.2.21-4_i386.deb to main/a/apache2/apache2-mpm-prefork_2.2.21-4_i386.deb apache2-mpm-worker_2.2.21-4_i386.deb to main/a/apache2/apache2-mpm-worker_2.2.21-4_i386.deb apache2-prefork-dev_2.2.21-4_i386.deb to main/a/apache2/apache2-prefork-dev_2.2.21-4_i386.deb apache2-suexec-custom_2.2.21-4_i386.deb to main/a/apache2/apache2-suexec-custom_2.2.21-4_i386.deb apache2-suexec_2.2.21-4_i386.deb to main/a/apache2/apache2-suexec_2.2.21-4_i386.deb apache2-threaded-dev_2.2.21-4_i386.deb to main/a/apache2/apache2-threaded-dev_2.2.21-4_i386.deb apache2-utils_2.2.21-4_i386.deb to main/a/apache2/apache2-utils_2.2.21-4_i386.deb apache2.2-bin_2.2.21-4_i386.deb to main/a/apache2/apache2.2-bin_2.2.21-4_i386.deb apache2.2-common_2.2.21-4_i386.deb to main/a/apache2/apache2.2-common_2.2.21-4_i386.deb apache2_2.2.21-4.debian.tar.gz to main/a/apache2/apache2_2.2.21-4.debian.tar.gz apache2_2.2.21-4.dsc to main/a/apache2/apache2_2.2.21-4.dsc apache2_2.2.21-4_i386.deb to main/a/apache2/apache2_2.2.21-4_i386.deb
