Format: 1.8
Date: Wed, 10 Apr 2024 13:46:26 -0400
Source: apache2
Binary: apache2 apache2-bin apache2-dev apache2-ssl-dev apache2-suexec-custom apache2-suexec-pristine apache2-utils libapache2-mod-md libapache2-mod-proxy-uwsgi
Architecture: ppc64el
Version: 2.4.41-4ubuntu3.17
Distribution: focal
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-ppc64el-019.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 apache2    - Apache HTTP Server
 apache2-bin - Apache HTTP Server (modules and other binary files)
 apache2-dev - Apache HTTP Server (development headers)
 apache2-ssl-dev - Apache HTTP Server (mod_ssl development headers)
 apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec
 apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec
 apache2-utils - Apache HTTP Server (utility programs for web servers)
 libapache2-mod-md - transitional package
 libapache2-mod-proxy-uwsgi - transitional package
Changes:
 apache2 (2.4.41-4ubuntu3.17) focal-security; urgency=medium
 .
   * SECURITY UPDATE: HTTP response splitting
     - debian/patches/CVE-2023-38709.patch: header validation after
       content-* are eval'ed in modules/http/http_filters.c.
     - CVE-2023-38709
   * SECURITY UPDATE: HTTP Response Splitting in multiple modules
     - debian/patches/CVE-2024-24795.patch: let httpd handle CL/TE for
       non-http handlers in include/util_script.h,
       modules/aaa/mod_authnz_fcgi.c, modules/generators/mod_cgi.c,
       modules/generators/mod_cgid.c, modules/http/http_filters.c,
       modules/proxy/ajp_header.c, modules/proxy/mod_proxy_fcgi.c,
       modules/proxy/mod_proxy_scgi.c, modules/proxy/mod_proxy_uwsgi.c.
     - CVE-2024-24795
   * SECURITY UPDATE: HTTP/2 DoS by memory exhaustion on endless
     continuation frames
     - debian/patches/CVE-2024-27316.patch: bail after too many failed reads
       in modules/http2/h2_session.c, modules/http2/h2_stream.c,
       modules/http2/h2_stream.h.
     - CVE-2024-27316
Checksums-Sha1:
 be4b9a9841c31244952f347d64666fc26cff7468 5167472 apache2-bin-dbgsym_2.4.41-4ubuntu3.17_ppc64el.ddeb
 93e09cd282c99d2456ef9355516c54ae710d0a5a 1277844 apache2-bin_2.4.41-4ubuntu3.17_ppc64el.deb
 b303d7ca3daad71096e5a6c74184de6a05e8779d 179560 apache2-dev_2.4.41-4ubuntu3.17_ppc64el.deb
 84df73507745694b6d78c71f9b0147214b08131a 3156 apache2-ssl-dev_2.4.41-4ubuntu3.17_ppc64el.deb
 df79a6d4f47c22cb24bc06c2373e9f657913c99c 13112 apache2-suexec-custom-dbgsym_2.4.41-4ubuntu3.17_ppc64el.ddeb
 378cc2569dd9204a08c37f04e2c0e209b9cd718d 15512 apache2-suexec-custom_2.4.41-4ubuntu3.17_ppc64el.deb
 061e308f23c8148eb962849ef8a6d9b33ba0605b 11884 apache2-suexec-pristine-dbgsym_2.4.41-4ubuntu3.17_ppc64el.ddeb
 aacd6953aab4ea28b2b688ae875f64e015d2943e 13924 apache2-suexec-pristine_2.4.41-4ubuntu3.17_ppc64el.deb
 c47608bd498ba646bfd242b36104144f9d579f4e 147396 apache2-utils-dbgsym_2.4.41-4ubuntu3.17_ppc64el.ddeb
 514351505223c5faf8cf2d8481518c75a2befc7c 86708 apache2-utils_2.4.41-4ubuntu3.17_ppc64el.deb
 e4c99a0237c6633170bf75709c8e378cd0176d3b 12158 apache2_2.4.41-4ubuntu3.17_ppc64el.buildinfo
 4d579fdea4616924f185913cf5c27ba2ff5141ee 95520 apache2_2.4.41-4ubuntu3.17_ppc64el.deb
 52bec168bddd3193d2b8894e507f85ac94882b04 992 libapache2-mod-md_2.4.41-4ubuntu3.17_ppc64el.deb
 6d1abbe02e9c2ff498301f9cc3a536e75c46d520 1184 libapache2-mod-proxy-uwsgi_2.4.41-4ubuntu3.17_ppc64el.deb
Checksums-Sha256:
 44e3f917e015c30dd34c5e2a919bd6c5da588f2d1466452cbb07a5268e825f5f 5167472 apache2-bin-dbgsym_2.4.41-4ubuntu3.17_ppc64el.ddeb
 17e0db4863a0434b4e90af666a7724604a9bfbe4c700c70f1bae4d8c4df7173d 1277844 apache2-bin_2.4.41-4ubuntu3.17_ppc64el.deb
 3e645cb5857f36ab121cf808ef5f16852add9b155029da2a48c96ff3ec4bfcb3 179560 apache2-dev_2.4.41-4ubuntu3.17_ppc64el.deb
 36f3a51cfeaec3f946fb5a0037989ba438b39c58622b7b01262a1f1665377259 3156 apache2-ssl-dev_2.4.41-4ubuntu3.17_ppc64el.deb
 e444c0f518fe02920cfeca8fda73c965471be159cfb242ee612c7be71b7a6215 13112 apache2-suexec-custom-dbgsym_2.4.41-4ubuntu3.17_ppc64el.ddeb
 273805f174a66cc9ca11ca0879ee8b28abd41ae2771238dec5ccb6992fcfdde3 15512 apache2-suexec-custom_2.4.41-4ubuntu3.17_ppc64el.deb
 efba71ee965ff9fade568b4ae0144078d5c39b24a55ab5e3ba278663512cb566 11884 apache2-suexec-pristine-dbgsym_2.4.41-4ubuntu3.17_ppc64el.ddeb
 9aae7c6804c69a8a1f715eab161b5f08bea68caf7e0c39f187a2fa754e8bbc66 13924 apache2-suexec-pristine_2.4.41-4ubuntu3.17_ppc64el.deb
 b4b374efa9e16548f031d7407aa81188fae55edb775bb2a94d8f85409f95a0bc 147396 apache2-utils-dbgsym_2.4.41-4ubuntu3.17_ppc64el.ddeb
 076b3b6a025c7edce11f6602a0b196064d24840bbf0a2a7342d749cd102db77a 86708 apache2-utils_2.4.41-4ubuntu3.17_ppc64el.deb
 681b12881dad09664cdcb74ec8af638de09dd68c839f2994938470da0a7db52c 12158 apache2_2.4.41-4ubuntu3.17_ppc64el.buildinfo
 1d1bb5564e37a5e701416f5a8f0ff901d841e4ab5b91806ab45e14c67909aef2 95520 apache2_2.4.41-4ubuntu3.17_ppc64el.deb
 f11b12073d5f927221ba2941283ec967ecbc8b4acde0f10645dba164d9a5ebde 992 libapache2-mod-md_2.4.41-4ubuntu3.17_ppc64el.deb
 286c58a555848051bd4adaf5380db0993cc81ab7a9a693e78da0a4bab1dea983 1184 libapache2-mod-proxy-uwsgi_2.4.41-4ubuntu3.17_ppc64el.deb
Files:
 3a00977bd2710b82508eff46d7d2d017 5167472 debug optional apache2-bin-dbgsym_2.4.41-4ubuntu3.17_ppc64el.ddeb
 b70c504305bc097745ee7c78b2c05eb5 1277844 httpd optional apache2-bin_2.4.41-4ubuntu3.17_ppc64el.deb
 d647ba9988282da25656ed22d0ebc06f 179560 httpd optional apache2-dev_2.4.41-4ubuntu3.17_ppc64el.deb
 48f8d58bf918599c600d5af315428c1a 3156 httpd optional apache2-ssl-dev_2.4.41-4ubuntu3.17_ppc64el.deb
 aca51ff4a7afda5ed34c94fb0e30fdde 13112 debug optional apache2-suexec-custom-dbgsym_2.4.41-4ubuntu3.17_ppc64el.ddeb
 389a529deef16b23bfad4eaa7ecd56c3 15512 httpd optional apache2-suexec-custom_2.4.41-4ubuntu3.17_ppc64el.deb
 0dc15c68b6406cedf06f1aba59410e22 11884 debug optional apache2-suexec-pristine-dbgsym_2.4.41-4ubuntu3.17_ppc64el.ddeb
 06ed60cf2a0969b4aed766530a4889e3 13924 httpd optional apache2-suexec-pristine_2.4.41-4ubuntu3.17_ppc64el.deb
 7786bede1ec6df2f0c12f1677f1d40ad 147396 debug optional apache2-utils-dbgsym_2.4.41-4ubuntu3.17_ppc64el.ddeb
 177a7f49a0385234e8cf58911f85fc4e 86708 httpd optional apache2-utils_2.4.41-4ubuntu3.17_ppc64el.deb
 84de7697b7841e45fee1d314ab6ba3de 12158 httpd optional apache2_2.4.41-4ubuntu3.17_ppc64el.buildinfo
 0f85d51e2d311753ee0d014a1b85dae2 95520 httpd optional apache2_2.4.41-4ubuntu3.17_ppc64el.deb
 888d64dedd6b78ce6eea2d7afaac153c 992 oldlibs optional libapache2-mod-md_2.4.41-4ubuntu3.17_ppc64el.deb
 25d480cb20b5b3b8c8102117af5e9505 1184 oldlibs optional libapache2-mod-proxy-uwsgi_2.4.41-4ubuntu3.17_ppc64el.deb
Original-Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>