Format: 1.8
Date: Thu, 12 Nov 2009 12:12:56 -0600
Source: apache2
Binary: apache2.2-common apache2.2-bin apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-mpm-itk apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-dbg
Architecture: sparc
Version: 2.2.12-1ubuntu2.1
Distribution: karmic
Urgency: low
Maintainer: Ubuntu/sparc Build Daemon <buildd@artigas.buildd>
Changed-By: Jamie Strandboge <jamie@ubuntu.com>
Description: 
 apache2    - Apache HTTP Server metapackage
 apache2-dbg - Apache debugging symbols
 apache2-doc - Apache HTTP Server documentation
 apache2-mpm-event - Apache HTTP Server - event driven model
 apache2-mpm-itk - multiuser MPM for Apache 2.2
 apache2-mpm-prefork - Apache HTTP Server - traditional non-threaded model
 apache2-mpm-worker - Apache HTTP Server - high speed threaded model
 apache2-prefork-dev - Apache development headers - non-threaded MPM
 apache2-suexec - Standard suexec program for Apache 2 mod_suexec
 apache2-suexec-custom - Configurable suexec program for Apache 2 mod_suexec
 apache2-threaded-dev - Apache development headers - threaded MPM
 apache2-utils - utility programs for webservers
 apache2.2-bin - Apache HTTP Server common binary files
 apache2.2-common - Apache HTTP Server common files
Changes: 
 apache2 (2.2.12-1ubuntu2.1) karmic-security; urgency=low
 .
   * SECURITY UPDATE: Reject client-initiated SSL/TLS renegotiations.
     Partial fix for CVE-2009-3555. Configurations requiring renegotiation
     of per-directory/location access controls are still affected until
     OpenSSL is updated.
     - debian/patches/900_CVE-2009-3555.dpatch: disable all client
       renegotiations
     - CVE-2009-3555
   * SECURITY UPDATE: fix NULL pointer dereference in mod_proxy_ftp module
     - debian/patches/901-CVE-2009-3094.dpatch: fix NULL pointer dereference
       in mod_proxy_ftp.c/apr_socket_close() and potential buffer overread
       in EPSV response parser
     - CVE-2009-3094
   * SECURITY UPDATE: fix access control bypass in mod_proxy_ftp when
     configured as a reverse proxy
     - debian/patches/902-CVE-2009-3095.dpatch: adjust proxy_ftp_handler()
       in mod_proxy_ftp.c to fail if the decoded Basic credentials contain
       special characters.
     - CVE-2009-3095
Checksums-Sha1: 
 bda13ca7eaa64bd0019812c3980ef344c7d7a37c 1297936 apache2.2-bin_2.2.12-1ubuntu2.1_sparc.deb
 616752aaf97afb809682da6f5bb983c7c51509ad 159488 apache2-utils_2.2.12-1ubuntu2.1_sparc.deb
 b561e490ed024639f5f399c571f8fba7fa69a59b 90554 apache2-suexec_2.2.12-1ubuntu2.1_sparc.deb
 a7fbfc72196d7aaf4c2b218d3340bdc5d04914bc 92166 apache2-suexec-custom_2.2.12-1ubuntu2.1_sparc.deb
 ea9456bdb2397c9ddf2248ae491d265c1175bbec 137098 apache2-prefork-dev_2.2.12-1ubuntu2.1_sparc.deb
 3184030c30e13f84abee8593450f69751af83c25 138202 apache2-threaded-dev_2.2.12-1ubuntu2.1_sparc.deb
Checksums-Sha256: 
 32a200930c5dfee6564e3bc95065b3c1cf05443481a659bcc66752a282714bce 1297936 apache2.2-bin_2.2.12-1ubuntu2.1_sparc.deb
 8a2ff75caa233f202bf9f6afbe8677b79d3633f20e9b908f4cb1ae3eda21226f 159488 apache2-utils_2.2.12-1ubuntu2.1_sparc.deb
 c2c1bb6d543fcfa617a440033d5b247646dccb03147d63be1d666f05d2550a47 90554 apache2-suexec_2.2.12-1ubuntu2.1_sparc.deb
 5bc2618d21892d811a6e50fcb4f03a2914e252eec7b267ab5c9366c9c952765b 92166 apache2-suexec-custom_2.2.12-1ubuntu2.1_sparc.deb
 52bcc356edb188358b7d5c49248363a98df228b6616b2e4d992413fd8b43b75f 137098 apache2-prefork-dev_2.2.12-1ubuntu2.1_sparc.deb
 fe22895a25d40bc3be6fad39ffffcaa41176b5c1f9db8127a00607d3a8151ca5 138202 apache2-threaded-dev_2.2.12-1ubuntu2.1_sparc.deb
Files: 
 106b0b71f5e928c1d543973b5b1f015b 1297936 httpd optional apache2.2-bin_2.2.12-1ubuntu2.1_sparc.deb
 7cb6c81588adaee162b8c85a1f69e7a7 159488 httpd optional apache2-utils_2.2.12-1ubuntu2.1_sparc.deb
 f207de0099ed259e2af736e8c82f91c2 90554 httpd optional apache2-suexec_2.2.12-1ubuntu2.1_sparc.deb
 28899fe31226880dfa961d8b05e8fa43 92166 httpd extra apache2-suexec-custom_2.2.12-1ubuntu2.1_sparc.deb
 7f566dfade1678c72eac7dd923ab5987 137098 httpd extra apache2-prefork-dev_2.2.12-1ubuntu2.1_sparc.deb
 09fbc3145d768cf1f204d47b50e21528 138202 httpd extra apache2-threaded-dev_2.2.12-1ubuntu2.1_sparc.deb
Original-Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>