Format: 1.8
Date: Mon, 23 May 2022 19:34:18 -0700
Source: apache2
Binary: apache2 apache2-bin apache2-data apache2-dev apache2-doc apache2-ssl-dev apache2-suexec-custom apache2-suexec-pristine apache2-utils libapache2-mod-md libapache2-mod-proxy-uwsgi
Built-For-Profiles: noudeb
Architecture: amd64 all
Version: 2.4.53-2ubuntu1
Distribution: kinetic-proposed
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lcy02-amd64-049.buildd>
Changed-By: Bryce Harrington <bryce@canonical.com>
Description:
 apache2    - Apache HTTP Server
 apache2-bin - Apache HTTP Server (modules and other binary files)
 apache2-data - Apache HTTP Server (common files)
 apache2-dev - Apache HTTP Server (development headers)
 apache2-doc - Apache HTTP Server (on-site documentation)
 apache2-ssl-dev - Apache HTTP Server (mod_ssl development headers)
 apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec
 apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec
 apache2-utils - Apache HTTP Server (utility programs for web servers)
 libapache2-mod-md - transitional package
 libapache2-mod-proxy-uwsgi - transitional package
Launchpad-Bugs-Fixed: 1971248
Changes:
 apache2 (2.4.53-2ubuntu1) kinetic; urgency=medium
 .
   * Merge with Debian unstable (LP: #1971248). Remaining changes:
     - debian/{control, apache2.install, apache2-utils.ufw.profile,
       apache2.dirs}: Add ufw profiles.
       (LP 261198)
     - debian/apache2.py, debian/apache2-bin.install: Add apport hook.
       (LP 609177)
     - d/index.html, d/icons/ubuntu-logo.png, d/apache2.postrm,
       d/s/include-binaries: replace Debian with Ubuntu on default
       page and add Ubuntu icon file.
       (LP 1288690)
     - d/index.html, d/icons/ubuntu-logo.png:  Refresh page design and
       new logo
       (LP 1966004)
     - d/apache2.postrm: Include md5 sum for updated index.html
   * Dropped:
     - OOB read in mod_lua via crafted request body
       + d/p/CVE-2022-22719.patch: error out if lua_read_body() or
         lua_write_body() fail in modules/lua/lua_request.c.
       [Fixed in 2.4.53 upstream]
     - HTTP Request Smuggling via error discarding the
       request body
       + d/p/CVE-2022-22720.patch: simpler connection close logic
         if discarding the request body fails in modules/http/http_filters.c,
         server/protocol.c.
       [Fixed in 2.4.53 upstream]
     - overflow via large LimitXMLRequestBody
       + d/p/CVE-2022-22721.patch: make sure and check that
         LimitXMLRequestBody fits in system memory in server/core.c,
         server/util.c, server/util_xml.c.
       [Fixed in 2.4.53 upstream]
     - out-of-bounds write in mod_sed
       + d/p/CVE-2022-23943-1.patch: use size_t to allow for larger
         buffer sizes and unsigned arithmetics in modules/filters/libsed.h,
         modules/filters/mod_sed.c, modules/filters/sed1.c.
       + d/p/CVE-2022-23943-2.patch: improve the logic flow in
         modules/filters/mod_sed.c.
       [Fixed in 2.4.53 upstream]
Checksums-Sha1:
 cb07bb42837e8787052b1d12b92084be478096b5 3898690 apache2-bin-dbgsym_2.4.53-2ubuntu1_amd64.ddeb
 208d2f009ac181170ea2a72a428fe5a01fbcc456 1325970 apache2-bin_2.4.53-2ubuntu1_amd64.deb
 d4a1a8cbb1869a577cbd212eaf0185a107bbb4a2 162948 apache2-data_2.4.53-2ubuntu1_all.deb
 89c549dbcea21dee16d99181f2eff39d406d1b54 190586 apache2-dev_2.4.53-2ubuntu1_amd64.deb
 32bae2a54a4f062c34056e3969c4e7ba4ffa5be1 3869988 apache2-doc_2.4.53-2ubuntu1_all.deb
 68726a813719aaee2910c1fca08e3e540e5ec633 2974 apache2-ssl-dev_2.4.53-2ubuntu1_amd64.deb
 7d15c26ce944ae27e39a3ab009ddf4373286766c 12826 apache2-suexec-custom-dbgsym_2.4.53-2ubuntu1_amd64.ddeb
 bca7d435f2f7c17625aac8fe4a66ca337c432a2a 16276 apache2-suexec-custom_2.4.53-2ubuntu1_amd64.deb
 4a830e970edbd4b56326d4388892a8da523922ec 11522 apache2-suexec-pristine-dbgsym_2.4.53-2ubuntu1_amd64.ddeb
 05c4a71c091b5cc9fec1fc04dfcbeb07efb0ca20 14702 apache2-suexec-pristine_2.4.53-2ubuntu1_amd64.deb
 2fec3b58f00dfce6b8a677844724d48c8a363638 120186 apache2-utils-dbgsym_2.4.53-2ubuntu1_amd64.ddeb
 2dec6a0e6e3ae6f8a2b2e31d48e7fe814ed6992c 87770 apache2-utils_2.4.53-2ubuntu1_amd64.deb
 c45548ee556aa473e41cda7057ef45566d591025 12007 apache2_2.4.53-2ubuntu1_amd64.buildinfo
 c21fa66efa74438f1848e16d6d011dbc07f909be 97302 apache2_2.4.53-2ubuntu1_amd64.deb
 266be81c9bb25933ccfa560079626eed5acd152e 796 libapache2-mod-md_2.4.53-2ubuntu1_amd64.deb
 255c9e535aba00f753a910cb9e63059d6d506b4f 982 libapache2-mod-proxy-uwsgi_2.4.53-2ubuntu1_amd64.deb
Checksums-Sha256:
 428be7cf9e917c1e56172a62438f708917cf2dd901663cb48929f640909c122d 3898690 apache2-bin-dbgsym_2.4.53-2ubuntu1_amd64.ddeb
 1ddc6241f7ff467b175813ab7fb0af3782a2447c03f7828a2bd060b1836b6c48 1325970 apache2-bin_2.4.53-2ubuntu1_amd64.deb
 2298038909d31ae8afe5b73b57590f7c906908ff6707955f27ed90d1d2953f99 162948 apache2-data_2.4.53-2ubuntu1_all.deb
 21b6369f08e543eb780034e71acc6aef3926b1bf65c86001c4b26eb121ab57aa 190586 apache2-dev_2.4.53-2ubuntu1_amd64.deb
 cffb2e1ea9fc836c1aca80a067540b0e0578b1d5eaac065389f6690e280db753 3869988 apache2-doc_2.4.53-2ubuntu1_all.deb
 0f9a691c7e65381e7796a4386ea9cc06ccfd3bffef99326e7f6bdc0e888b37e9 2974 apache2-ssl-dev_2.4.53-2ubuntu1_amd64.deb
 ecd2ba1121148c02739f21a6096a632f5fa85c783f4e3d0aca9dca306aaf6dd5 12826 apache2-suexec-custom-dbgsym_2.4.53-2ubuntu1_amd64.ddeb
 b05fbef81c9fdaade3bf7485d64bee9bac998ab7fd30ebe9063951837227bef3 16276 apache2-suexec-custom_2.4.53-2ubuntu1_amd64.deb
 96be96e6be9913f19c36649ba37903e1a4fc718bba971eb0b5109a10be290524 11522 apache2-suexec-pristine-dbgsym_2.4.53-2ubuntu1_amd64.ddeb
 91f4c3ecc6c0ccd168896ba4ccde68701de9324daa2a8a7d2728871f0653c045 14702 apache2-suexec-pristine_2.4.53-2ubuntu1_amd64.deb
 730400ff74a3e915bb67019a836d04036e877777ccbe5146fa98baffd7868374 120186 apache2-utils-dbgsym_2.4.53-2ubuntu1_amd64.ddeb
 5474e3427917d18d6150295d11dc33bd8904c4ec353faea3f8de74fedb1875b1 87770 apache2-utils_2.4.53-2ubuntu1_amd64.deb
 50d0cad9bc1f463c39b3b37acfa3bc89ede1769110791a52a5b2344c67b999c3 12007 apache2_2.4.53-2ubuntu1_amd64.buildinfo
 20522558ff6daf49f868c6bd96deb88f3a869de9d71b8898c73f952ac7041e8b 97302 apache2_2.4.53-2ubuntu1_amd64.deb
 e00f8d58d615f5f2f065060b3f364576da3674fb8bab52e05c14e97c39147d14 796 libapache2-mod-md_2.4.53-2ubuntu1_amd64.deb
 042576afbb2c53127190ee713c00900de72baf1a4ba6b812c884888d61d0536b 982 libapache2-mod-proxy-uwsgi_2.4.53-2ubuntu1_amd64.deb
Files:
 890bb625a751c0f51d74be8a97f8588c 3898690 debug optional apache2-bin-dbgsym_2.4.53-2ubuntu1_amd64.ddeb
 6dc7fb46045a7d11f07f637e68fcd7d2 1325970 httpd optional apache2-bin_2.4.53-2ubuntu1_amd64.deb
 329a3bd23ac7a0d40008ffc4553df96e 162948 httpd optional apache2-data_2.4.53-2ubuntu1_all.deb
 bf68728b48a0bae95fc6b125812cc3dc 190586 httpd optional apache2-dev_2.4.53-2ubuntu1_amd64.deb
 73f1caa93d2ee18cd7786ae1de216309 3869988 doc optional apache2-doc_2.4.53-2ubuntu1_all.deb
 335b5a0dad5f3f8166e5ef11c3fd733d 2974 httpd optional apache2-ssl-dev_2.4.53-2ubuntu1_amd64.deb
 48923516ec885146cbdbdb7844efddae 12826 debug optional apache2-suexec-custom-dbgsym_2.4.53-2ubuntu1_amd64.ddeb
 c2ebe73c244d5689ed4d8ec88a842403 16276 httpd optional apache2-suexec-custom_2.4.53-2ubuntu1_amd64.deb
 824b525f04754d37c248f3def7cada85 11522 debug optional apache2-suexec-pristine-dbgsym_2.4.53-2ubuntu1_amd64.ddeb
 9506529202b095dcdc370f327565551e 14702 httpd optional apache2-suexec-pristine_2.4.53-2ubuntu1_amd64.deb
 1243284bbc6ba3d04457c32bfddaaa04 120186 debug optional apache2-utils-dbgsym_2.4.53-2ubuntu1_amd64.ddeb
 3a685eeecdbb326a65b204ce61ecba52 87770 httpd optional apache2-utils_2.4.53-2ubuntu1_amd64.deb
 3a52f16459b01258c96fc9aff1765db3 12007 httpd optional apache2_2.4.53-2ubuntu1_amd64.buildinfo
 ee9477ecd9b9832e0b12413672670990 97302 httpd optional apache2_2.4.53-2ubuntu1_amd64.deb
 dd864976de3aeda472cb0581a65bef67 796 oldlibs optional libapache2-mod-md_2.4.53-2ubuntu1_amd64.deb
 161107600d05cb8edabedffafe678af4 982 oldlibs optional libapache2-mod-proxy-uwsgi_2.4.53-2ubuntu1_amd64.deb
Original-Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>