Format: 1.8
Date: Mon, 23 Jan 2023 13:36:09 -0500
Source: apache2
Binary: apache2 apache2-bin apache2-dev apache2-ssl-dev apache2-suexec-custom apache2-suexec-pristine apache2-utils libapache2-mod-md libapache2-mod-proxy-uwsgi
Architecture: i386
Version: 2.4.41-4ubuntu3.13
Distribution: focal
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lcy02-amd64-079.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 apache2    - Apache HTTP Server
 apache2-bin - Apache HTTP Server (modules and other binary files)
 apache2-dev - Apache HTTP Server (development headers)
 apache2-ssl-dev - Apache HTTP Server (mod_ssl development headers)
 apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec
 apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec
 apache2-utils - Apache HTTP Server (utility programs for web servers)
 libapache2-mod-md - transitional package
 libapache2-mod-proxy-uwsgi - transitional package
Changes:
 apache2 (2.4.41-4ubuntu3.13) focal-security; urgency=medium
 .
   * SECURITY UPDATE: DoS via crafted If header in mod_dav
     - debian/patches/CVE-2006-20001.patch: fix error path for "Not" prefix
       parsing in modules/dav/main/util.c.
     - CVE-2006-20001
   * SECURITY UPDATE: request smuggling in mod_proxy_ajp
     - debian/patches/CVE-2022-36760.patch: cleanup on error in
       modules/proxy/mod_proxy_ajp.c.
     - CVE-2022-36760
   * SECURITY UPDATE: response header truncation issue
     - debian/patches/CVE-2022-37436.patch: fail on bad header in
       modules/proxy/mod_proxy_http.c, server/protocol.c.
     - CVE-2022-37436
Checksums-Sha1:
 5fb3dbbcee75d97f170d19f685d1efeffbcea4f4 4335144 apache2-bin-dbgsym_2.4.41-4ubuntu3.13_i386.ddeb
 9ec95b334d714e06a38ad783cfb2946614e8c207 1251388 apache2-bin_2.4.41-4ubuntu3.13_i386.deb
 135f816a45681927d34017630d4a222364486ec1 179412 apache2-dev_2.4.41-4ubuntu3.13_i386.deb
 4d9891b50ae2d1eff7cc7ee990c3a961b84b36af 3156 apache2-ssl-dev_2.4.41-4ubuntu3.13_i386.deb
 c3eddd17d1f4e798613fcc71eacc5a50b3ad8443 11896 apache2-suexec-custom-dbgsym_2.4.41-4ubuntu3.13_i386.ddeb
 6bb3aa1eaaf0b7014ab1ce66fd947d246478da81 15560 apache2-suexec-custom_2.4.41-4ubuntu3.13_i386.deb
 bf3017525f824c726c630d78e43bdf5b474e4741 10696 apache2-suexec-pristine-dbgsym_2.4.41-4ubuntu3.13_i386.ddeb
 a5c3d50a80a3c92d41f27c2c330d2539d7dfae1e 14020 apache2-suexec-pristine_2.4.41-4ubuntu3.13_i386.deb
 f9bba38382c4f328cd42d2e1508e45c599e27089 131152 apache2-utils-dbgsym_2.4.41-4ubuntu3.13_i386.ddeb
 d6264628f37bc74e8d86ae27fe9946145b5626c6 88928 apache2-utils_2.4.41-4ubuntu3.13_i386.deb
 42ff2b0e48391639677b8f48fd309486cb1e171c 11923 apache2_2.4.41-4ubuntu3.13_i386.buildinfo
 0c22bdf77e6d4a62de8b7b8fb3e1d1a7b8d75597 95588 apache2_2.4.41-4ubuntu3.13_i386.deb
 f1e07b22e2ee30cefda82942f3fcc465badab69a 992 libapache2-mod-md_2.4.41-4ubuntu3.13_i386.deb
 1aecfb8f64a545bf3d5a63461ac7dff1edb588df 1184 libapache2-mod-proxy-uwsgi_2.4.41-4ubuntu3.13_i386.deb
Checksums-Sha256:
 bf14622bedbdebbd79795e593cda7a79b78bd2a97b453d729e973858d4792e40 4335144 apache2-bin-dbgsym_2.4.41-4ubuntu3.13_i386.ddeb
 582dec53a1d0d5dc7dfea09aa0497c71a985dd3cf538dab616b430b5ec6a97a0 1251388 apache2-bin_2.4.41-4ubuntu3.13_i386.deb
 2e0dc9cb42c68fa1020d5d2b3097944cb7e9b4623683ce2f353d1b23952a4199 179412 apache2-dev_2.4.41-4ubuntu3.13_i386.deb
 255074a37cf186e37213fdf363ca50982161c43ce0691aa6b91342236dab02c6 3156 apache2-ssl-dev_2.4.41-4ubuntu3.13_i386.deb
 6e457fa135d7af7028dbd2668e003743d985f6b5e666b2c9386a884bd8a7559b 11896 apache2-suexec-custom-dbgsym_2.4.41-4ubuntu3.13_i386.ddeb
 502be4f13f4f2a2639e1bf140b6fca145a6b7cf8b82b881554fd64cb7fd2189a 15560 apache2-suexec-custom_2.4.41-4ubuntu3.13_i386.deb
 04a9baece0276e1cfe7258f98b9b5a64a3159918eb174135988c0f6aa594f13a 10696 apache2-suexec-pristine-dbgsym_2.4.41-4ubuntu3.13_i386.ddeb
 97f0125817acd9b2264b3a43c96493266f1f93a43d3b5fbc7c20a632d161a878 14020 apache2-suexec-pristine_2.4.41-4ubuntu3.13_i386.deb
 c6d65cd25c698623f464ba8a1e66a6bcfb6e21445ed46b1747b9324dbc782534 131152 apache2-utils-dbgsym_2.4.41-4ubuntu3.13_i386.ddeb
 87bf6c209656878e1fe9f151423d524a92597a06bdc8789a024fa3e9d84ed879 88928 apache2-utils_2.4.41-4ubuntu3.13_i386.deb
 a6b300956a15925dd2ca6f0cbf42153aeeaa4e6bc76b7475aa644830fbcfb3d8 11923 apache2_2.4.41-4ubuntu3.13_i386.buildinfo
 39bcaeeba9929f1d421555457fa608a364ae26b63a6bbe0b7579ec2aeaffa63a 95588 apache2_2.4.41-4ubuntu3.13_i386.deb
 13b559448b94e66887a33f8ff75d0aa9b5a56b5e7e10ff4ce7dbbbb6a26ad747 992 libapache2-mod-md_2.4.41-4ubuntu3.13_i386.deb
 d203342b5a47113740a36d9617295a9d55f905a7e83515d18fc718fefc137886 1184 libapache2-mod-proxy-uwsgi_2.4.41-4ubuntu3.13_i386.deb
Files:
 66e3d184d92cba4db628089db8340ff0 4335144 debug optional apache2-bin-dbgsym_2.4.41-4ubuntu3.13_i386.ddeb
 5c02291d860c2804f81720ba39ca940f 1251388 httpd optional apache2-bin_2.4.41-4ubuntu3.13_i386.deb
 02b758dda1cd2cd5a3d8c37d11e75864 179412 httpd optional apache2-dev_2.4.41-4ubuntu3.13_i386.deb
 d5efc7050c5510bd9c22d60c554bb700 3156 httpd optional apache2-ssl-dev_2.4.41-4ubuntu3.13_i386.deb
 1851155fc9aebea98878ed5943b2d69f 11896 debug optional apache2-suexec-custom-dbgsym_2.4.41-4ubuntu3.13_i386.ddeb
 6a43998639ab6a1436f110dfad2cfe0a 15560 httpd optional apache2-suexec-custom_2.4.41-4ubuntu3.13_i386.deb
 d92563272e63b82924267dc0ea6fd58c 10696 debug optional apache2-suexec-pristine-dbgsym_2.4.41-4ubuntu3.13_i386.ddeb
 218cad7054052978f94a2c9383c5ae62 14020 httpd optional apache2-suexec-pristine_2.4.41-4ubuntu3.13_i386.deb
 1138e064c43b9b79d1e34a334ad21382 131152 debug optional apache2-utils-dbgsym_2.4.41-4ubuntu3.13_i386.ddeb
 2d562ff14c2e3d589a96bae2e69a949d 88928 httpd optional apache2-utils_2.4.41-4ubuntu3.13_i386.deb
 e4f5f416bd4a115cd80d86c67057978f 11923 httpd optional apache2_2.4.41-4ubuntu3.13_i386.buildinfo
 d7aa524a8aa205477839b4735fc81b23 95588 httpd optional apache2_2.4.41-4ubuntu3.13_i386.deb
 9cdd7c3d89d5636c730f966ce4e75c5a 992 oldlibs optional libapache2-mod-md_2.4.41-4ubuntu3.13_i386.deb
 4fe85efcb75c774d0e432b7744a14053 1184 oldlibs optional libapache2-mod-proxy-uwsgi_2.4.41-4ubuntu3.13_i386.deb
Original-Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>