-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Mon, 06 Nov 2017 20:41:56 +0000 Source: apr Binary: libapr1 libapr1-dev libapr1-dbg Architecture: source amd64 Version: 1.4.6-3+deb7u2 Distribution: wheezy-security Urgency: high Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org> Changed-By: Chris Lamb <lamby@debian.org> Description: libapr1 - Apache Portable Runtime Library libapr1-dbg - Apache Portable Runtime Library - Debugging Symbols libapr1-dev - Apache Portable Runtime Library - Development Headers Closes: 879708 Changes: apr (1.4.6-3+deb7u2) wheezy-security; urgency=high . * CVE-2017-12613: When the apr_exp_time*() or apr_os_exp_time*() functions were invoked with an invalid month field value, out of bounds memory may have been be accessed in converting this value to an apr_time_exp_t value. (Closes: #879708) Checksums-Sha1: 56718069de21eda6f276522fed012b5c65560c4b 2089 apr_1.4.6-3+deb7u2.dsc 3f5e3f1f67cb4fe0cc46e8c3740105c35a020308 982243 apr_1.4.6.orig.tar.gz f76bf836edef7ff4c8bbcb0a66f7de8fc0e0186d 23767 apr_1.4.6-3+deb7u2.debian.tar.gz ed83323dbaede56222a32edb532368a89141f260 106448 libapr1_1.4.6-3+deb7u2_amd64.deb 4ff8729dda7db67ee52908472f8f14158166436b 1123150 libapr1-dev_1.4.6-3+deb7u2_amd64.deb d70886c45ef132392c4de737942e004b49cccc20 246998 libapr1-dbg_1.4.6-3+deb7u2_amd64.deb Checksums-Sha256: 6b32012539a9f7cb19628760cfa2e1d8ebbf6da357905e52ed8a7554df450997 2089 apr_1.4.6-3+deb7u2.dsc 538d593d805c36985fc6d200d31bf6c1b5f90df2a50b917902743a13bbc10e05 982243 apr_1.4.6.orig.tar.gz f52807e6833e80d5e73d05b249944af9c5d22bbd79ee2cd9468dfd4373db01ac 23767 apr_1.4.6-3+deb7u2.debian.tar.gz 9a0e82c06cadbdb75f0510b767579a1e62de7743b6494dafa4e7f8f07c321f6f 106448 libapr1_1.4.6-3+deb7u2_amd64.deb ec17c181fd8cd0486b9dab77d5d38b2144e96485a50cfa4d7e0947319580acae 1123150 libapr1-dev_1.4.6-3+deb7u2_amd64.deb d3072a50bb4644930f9167ef34d96c7baf3c0340dd5cc663807b6b231fa80462 246998 libapr1-dbg_1.4.6-3+deb7u2_amd64.deb Files: 03d5037e547c8fe37e3e703f5778b1da 2089 libs optional apr_1.4.6-3+deb7u2.dsc 76cc4457fbb71eefdafa27dba8f511fb 982243 libs optional apr_1.4.6.orig.tar.gz ac508fd4854e91e7bb750a0110b41171 23767 libs optional apr_1.4.6-3+deb7u2.debian.tar.gz 68bafb5d1e47196b91d8393feb325f2a 106448 libs optional libapr1_1.4.6-3+deb7u2_amd64.deb a74175b85fb516225eac9f1d4cf8fb6c 1123150 libdevel optional libapr1-dev_1.4.6-3+deb7u2_amd64.deb 0ee99aee12fb4310168dfdda57cb6e00 246998 debug extra libapr1-dbg_1.4.6-3+deb7u2_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAloAy2YACgkQHpU+J9Qx HljDZg//Q906TVmp8WcF6Bv+pcMBc3efHAmCpsUr2kxFcnLAtq42rZOivHbuKg81 81jdgRNHV4G33gWo2+pLZkkAt48d9rffzdVUUl5QPa1FEx9ORlmBmleyVXntPQZm RZeH+jqb05q3WQg7pcSH36UAr3JLQh/Fj3HGOtCOmuH887+XYEHuEwrzVa0i92nd jMntTY5ZS2UkIi4k6sr3EcJalGjJB8pulv6x63nQwISPVSCfEThlUBC+wyC0mF8/ H/yEw2A2ilztKZnRpV5u37S4FULDKeteuY4nvUqcvTAC5xQwkZjye61i5vaAXpzD pyUJ+TKJyXpYSM2iSscINB2CwAG6LCHfksoofOQXLNcemiBmBZAkHihaXe+Ejawz 2uhEHx2uCuSR8qQ93s8BnoxaR/Hko8+HeXh2hoE/fuA+eGQRrrR4QfpapApYS6yt +3XV7GK82NBHPCq17t0fHqvJkinYDEgDAbfshdgoui1dxd0VP3xAOI/+oc2nWVQL rLT9RPi6ilFBnMEhxAGjkvmEWKdZ7c+2vh5WlARzdSyFGljbc+X0i9QCGdmHqcMw axkg6XGKmWqr061lVZZJGWS3ZYWwPqT6L8yVtihPk8RYIfM9xXRBac+jv8x1HMkE 7TLJx66YZaK7NF+jYz7o6OnjrN3eX16LPzcSsUn4M0cNQ2Ojizk= =B0uR -----END PGP SIGNATURE-----
