Format: 1.7
Date: Fri, 20 May 2011 23:07:29 -0700
Source: apr
Binary: libapr1 libapr1-dev libapr1-dbg
Architecture: lpia
Version: 1.2.11-1ubuntu0.2
Distribution: hardy
Urgency: low
Maintainer: Ubuntu/i386 Build Daemon <buildd@molybdenum.buildd>
Changed-By: Steve Beattie <sbeattie@ubuntu.com>
Description: 
 libapr1    - The Apache Portable Runtime Library
 libapr1-dbg - The Apache Portable Runtime Library - Development Headers
 libapr1-dev - The Apache Portable Runtime Library - Development Headers
Changes: 
 apr (1.2.11-1ubuntu0.2) hardy-security; urgency=low
 .
   * SECURITY UPDATE: denial of service in apr_fnmatch exploitable via
     apache's mod_index
     - debian/patches/025_fnmatch_CVE-2011-0419.dpatch: rewrite
       apr_fnmatch to have a better time bounds on execution.
     - CVE-2011-0419
     - debian/patches/026_fnmatch_CVE-2011-1928.dpatch: fix possible
       DoS introduced by patch for CVE-2011-0419.
     - CVE-2011-1928
Files: 
 dc2d0f551f16918f7399fffa95e3d43a 112952 libs optional libapr1_1.2.11-1ubuntu0.2_lpia.deb
 477080874a9c995e55ad8f2bf776f369 777244 libdevel optional libapr1-dev_1.2.11-1ubuntu0.2_lpia.deb
 664408f853cba8a84c9c19b238206c87 192444 libdevel extra libapr1-dbg_1.2.11-1ubuntu0.2_lpia.deb
Original-Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>