Format: 1.7
Date: Wed, 02 Nov 2011 19:43:46 -0700
Source: apache2
Binary: apache2.2-common apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-mpm-perchild apache2-utils apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-src apache2-dbg
Architecture: amd64
Version: 2.2.8-1ubuntu0.22
Distribution: hardy
Urgency: low
Maintainer: Ubuntu/amd64 Build Daemon <buildd@allspice.buildd>
Changed-By: Steve Beattie <sbeattie@ubuntu.com>
Description: 
 apache2    - Next generation, scalable, extendable web server
 apache2-dbg - Apache debugging symbols
 apache2-doc - documentation for apache2
 apache2-mpm-event - Event driven model for Apache HTTPD
 apache2-mpm-perchild - Transitional package - please remove
 apache2-mpm-prefork - Traditional model for Apache HTTPD
 apache2-mpm-worker - High speed threaded model for Apache HTTPD
 apache2-prefork-dev - development headers for apache2
 apache2-src - Apache source code
 apache2-threaded-dev - development headers for apache2
 apache2-utils - utility programs for webservers
 apache2.2-common - Next generation, scalable, extendable web server
Launchpad-Bugs-Fixed: 871674
Changes: 
 apache2 (2.2.8-1ubuntu0.22) hardy-security; urgency=low
 .
   [ Michael Jeanson ]
   * SECURITY UPDATE: mod_proxy reverse proxy exposure
     * debian/patches/216_CVE-2011-3368.dpatch: return 400
       on invalid requests.
     - debian/patches/214_CVE-2011-3368_part2.dpatch: fix same for http
       0.9 protocol
 .
   [ Steve Beattie ]
   * SECURITY UPDATE: mod_proxy_ajp denial of service (LP: #871674)
     - debian/patches/213_CVE-2011-3348.dpatch: return
       HTTP_NOT_IMPLEMENTED when AJP_EBAD_METHOD is requested
     - CVE-2011-3348
   * Include additional fixes for regressions introduced by
     CVE-2011-3192 fixes
     - debian/patches/084_CVE-2011-3192_regression_part2.dpatch:
       take upstream fixes for byterange_filter.c through the 2.2.21
       release except for the added MaxRanges configuration option.
Files: 
 229aac79adb298ee1f2778a61b917bfb 818696 web optional apache2.2-common_2.2.8-1ubuntu0.22_amd64.deb
 5eff471bc5feb23b246e060392d9330e 255810 web optional apache2-mpm-worker_2.2.8-1ubuntu0.22_amd64.deb
 514fd63242ad3416a56a97f5923659b8 251504 web optional apache2-mpm-prefork_2.2.8-1ubuntu0.22_amd64.deb
 31ad12a21099ebe5c6bb89e014c87aca 256390 web optional apache2-mpm-event_2.2.8-1ubuntu0.22_amd64.deb
 ae8fcccc332080f85b9a85e03ac2f878 143016 web optional apache2-utils_2.2.8-1ubuntu0.22_amd64.deb
 21dc47073c08b9b9a225a6750cc2154f 209994 devel extra apache2-prefork-dev_2.2.8-1ubuntu0.22_amd64.deb
 abaa7110f1c5cdea2fca2e68519db66e 210718 devel extra apache2-threaded-dev_2.2.8-1ubuntu0.22_amd64.deb
Original-Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>