Format: 1.8
Date: Fri, 20 May 2011 14:05:32 -0700
Source: apr
Binary: libapr1 libapr1-dev libapr1-dbg
Architecture: i386
Version: 1.4.2-3ubuntu1.1
Distribution: maverick
Urgency: low
Maintainer: Ubuntu/i386 Build Daemon <buildd@vernadsky.buildd>
Changed-By: Steve Beattie <sbeattie@ubuntu.com>
Description: 
 libapr1    - The Apache Portable Runtime Library
 libapr1-dbg - The Apache Portable Runtime Library - Debugging Symbols
 libapr1-dev - The Apache Portable Runtime Library - Development Headers
Changes: 
 apr (1.4.2-3ubuntu1.1) maverick-security; urgency=low
 .
   * SECURITY UPDATE: denial of service in apr_fnmatch exploitable via
     apache's mod_index
     - debian/patches/031_fnmatch_CVE-2011-0419.dpatch: rewrite
       apr_fnmatch to have a better time bounds on execution.
     - CVE-2011-0419
     - debian/patches/032_fnmatch_CVE-2011-1928.dpatch: fix possible
       DoS introduced by patch for CVE-2011-0419.
     - CVE-2011-1928
Checksums-Sha1: 
 c0f08e337a515ec031f5d181f9e71822125b9337 84214 libapr1_1.4.2-3ubuntu1.1_i386.deb
 1a979697136376b4e7f8b9d42cb50758c91e03a2 981934 libapr1-dev_1.4.2-3ubuntu1.1_i386.deb
 082ad7748413e6e6f656d17c7d334a0d6cedfe8d 23786 libapr1-dbg_1.4.2-3ubuntu1.1_i386.deb
Checksums-Sha256: 
 a898431de04771fb5eb042570bc45fe89d6d73fbfbf37c36b477987c2523ea3a 84214 libapr1_1.4.2-3ubuntu1.1_i386.deb
 b78aef028d1a927b375dfb3f54a034f224cbb932d3ec87b163efe7f32c55329a 981934 libapr1-dev_1.4.2-3ubuntu1.1_i386.deb
 286a941acd0857ff30a99440fe52fc763706077f5f6d3be211eeced7f6c00042 23786 libapr1-dbg_1.4.2-3ubuntu1.1_i386.deb
Files: 
 3eb7dbce52a188f9b83a755590345f68 84214 libs optional libapr1_1.4.2-3ubuntu1.1_i386.deb
 3cf8a0a4a672b374b4d5ee235dc80f0c 981934 libdevel optional libapr1-dev_1.4.2-3ubuntu1.1_i386.deb
 25dd7b6ccfb0848f10fdcaf6c68ad823 23786 debug extra libapr1-dbg_1.4.2-3ubuntu1.1_i386.deb
Original-Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>