Format: 1.8
Date: Mon, 23 May 2022 19:34:18 -0700
Source: apache2
Binary: apache2 apache2-bin apache2-dev apache2-ssl-dev apache2-suexec-custom apache2-suexec-pristine apache2-utils libapache2-mod-md libapache2-mod-proxy-uwsgi
Built-For-Profiles: noudeb
Architecture: ppc64el
Version: 2.4.53-2ubuntu1
Distribution: kinetic-proposed
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-ppc64el-016.buildd>
Changed-By: Bryce Harrington <bryce@canonical.com>
Description:
 apache2    - Apache HTTP Server
 apache2-bin - Apache HTTP Server (modules and other binary files)
 apache2-dev - Apache HTTP Server (development headers)
 apache2-ssl-dev - Apache HTTP Server (mod_ssl development headers)
 apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec
 apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec
 apache2-utils - Apache HTTP Server (utility programs for web servers)
 libapache2-mod-md - transitional package
 libapache2-mod-proxy-uwsgi - transitional package
Launchpad-Bugs-Fixed: 1971248
Changes:
 apache2 (2.4.53-2ubuntu1) kinetic; urgency=medium
 .
   * Merge with Debian unstable (LP: #1971248). Remaining changes:
     - debian/{control, apache2.install, apache2-utils.ufw.profile,
       apache2.dirs}: Add ufw profiles.
       (LP 261198)
     - debian/apache2.py, debian/apache2-bin.install: Add apport hook.
       (LP 609177)
     - d/index.html, d/icons/ubuntu-logo.png, d/apache2.postrm,
       d/s/include-binaries: replace Debian with Ubuntu on default
       page and add Ubuntu icon file.
       (LP 1288690)
     - d/index.html, d/icons/ubuntu-logo.png:  Refresh page design and
       new logo
       (LP 1966004)
     - d/apache2.postrm: Include md5 sum for updated index.html
   * Dropped:
     - OOB read in mod_lua via crafted request body
       + d/p/CVE-2022-22719.patch: error out if lua_read_body() or
         lua_write_body() fail in modules/lua/lua_request.c.
       [Fixed in 2.4.53 upstream]
     - HTTP Request Smuggling via error discarding the
       request body
       + d/p/CVE-2022-22720.patch: simpler connection close logic
         if discarding the request body fails in modules/http/http_filters.c,
         server/protocol.c.
       [Fixed in 2.4.53 upstream]
     - overflow via large LimitXMLRequestBody
       + d/p/CVE-2022-22721.patch: make sure and check that
         LimitXMLRequestBody fits in system memory in server/core.c,
         server/util.c, server/util_xml.c.
       [Fixed in 2.4.53 upstream]
     - out-of-bounds write in mod_sed
       + d/p/CVE-2022-23943-1.patch: use size_t to allow for larger
         buffer sizes and unsigned arithmetics in modules/filters/libsed.h,
         modules/filters/mod_sed.c, modules/filters/sed1.c.
       + d/p/CVE-2022-23943-2.patch: improve the logic flow in
         modules/filters/mod_sed.c.
       [Fixed in 2.4.53 upstream]
Checksums-Sha1:
 7a9503d59611da7a9fbc031f183d615b31253929 3953570 apache2-bin-dbgsym_2.4.53-2ubuntu1_ppc64el.ddeb
 15f3c16e9ee6e14a1fefc586fbe9d154613fd191 1517006 apache2-bin_2.4.53-2ubuntu1_ppc64el.deb
 f20db9d8beb895c0436739977303e4d0e9bd77c8 190598 apache2-dev_2.4.53-2ubuntu1_ppc64el.deb
 bae4415e660de857606c1026ddd661235e1cf94e 2978 apache2-ssl-dev_2.4.53-2ubuntu1_ppc64el.deb
 556df97a9e6372b97b8816594ac92452ace7287c 13328 apache2-suexec-custom-dbgsym_2.4.53-2ubuntu1_ppc64el.ddeb
 382dafe4378c89915cd0b8d285be267b427288a4 16216 apache2-suexec-custom_2.4.53-2ubuntu1_ppc64el.deb
 f60f8e767584fb47b72cd533c005b034777c4e8f 11982 apache2-suexec-pristine-dbgsym_2.4.53-2ubuntu1_ppc64el.ddeb
 9f6ddce36c1172cb120644c138d8aa7bdf4cde2a 14560 apache2-suexec-pristine_2.4.53-2ubuntu1_ppc64el.deb
 726777f00efe572a5d9e51bdad5241b0cd1f5d40 129682 apache2-utils-dbgsym_2.4.53-2ubuntu1_ppc64el.ddeb
 78e9cb183b6cd06f56e4b1674ebaf2527e5852ce 93094 apache2-utils_2.4.53-2ubuntu1_ppc64el.deb
 90366b5b0114c3aacfab0886d0889c5ef9a679c3 11517 apache2_2.4.53-2ubuntu1_ppc64el.buildinfo
 c3bd9cb4778636a78e0486fcfb4a585b4ecf9623 97304 apache2_2.4.53-2ubuntu1_ppc64el.deb
 ba7319e01fc1bce07ee6d6f6c60e6aa07ccda3d6 800 libapache2-mod-md_2.4.53-2ubuntu1_ppc64el.deb
 f0afd2728553c16cc26bf5bc60db2bced5d5dbd0 984 libapache2-mod-proxy-uwsgi_2.4.53-2ubuntu1_ppc64el.deb
Checksums-Sha256:
 8d6c96d8dd7ff1ee138a40fbca983897ec84c40411845d10bf34c1e7ec10c176 3953570 apache2-bin-dbgsym_2.4.53-2ubuntu1_ppc64el.ddeb
 6c1e51a5f1b4834db15f2a1418759dc5adb5f3bade9bcd2238379150ad0a4151 1517006 apache2-bin_2.4.53-2ubuntu1_ppc64el.deb
 64c0cfd990dda53738879f7750e858e7b51dcf171be1989b97c822fbd6a0305b 190598 apache2-dev_2.4.53-2ubuntu1_ppc64el.deb
 41cdf4dcbbb5349ad28c8d65fd98e927e96092d9b46fa6d28bbe5cee62e507fb 2978 apache2-ssl-dev_2.4.53-2ubuntu1_ppc64el.deb
 a27595d6bfd84bbaa0c508b998a8e41557b83c848a8a972bc5ab877abe42160d 13328 apache2-suexec-custom-dbgsym_2.4.53-2ubuntu1_ppc64el.ddeb
 09b9e0503d4b6d8c4566d4ab06764264d0b204703aafc54fa6ef3e1d0716711a 16216 apache2-suexec-custom_2.4.53-2ubuntu1_ppc64el.deb
 808740af9e1bbfb87e1a9d6a585ea5080995876ce7eb0c75ce85f3ccde90d080 11982 apache2-suexec-pristine-dbgsym_2.4.53-2ubuntu1_ppc64el.ddeb
 2d0883f686cdd7ae0ef70042ed020edf2f74a7b95ecc8759f4605f16f0d0c207 14560 apache2-suexec-pristine_2.4.53-2ubuntu1_ppc64el.deb
 7110cdf94240581fa2e2ff227ab62d9ddbd7e2a01c3f519c2a65110da5baf959 129682 apache2-utils-dbgsym_2.4.53-2ubuntu1_ppc64el.ddeb
 014dda272d1dfdb3aee4dce94102378678acf2bce4cd0dbdb406cb291db57f73 93094 apache2-utils_2.4.53-2ubuntu1_ppc64el.deb
 9b4077ee54a88d2e772417844762ab817938abce021d8eddb492fc5d47063dd9 11517 apache2_2.4.53-2ubuntu1_ppc64el.buildinfo
 f58ef424a781061eb97ca562db91986f318aa55fd71eb129d2124d5f01500ca0 97304 apache2_2.4.53-2ubuntu1_ppc64el.deb
 32eb2723a036753c65863f78283338f6d2f2ece8568ea9acc91ae7ace29275a9 800 libapache2-mod-md_2.4.53-2ubuntu1_ppc64el.deb
 2eae01a2240adf9d0ab5fb8c44039792091d084552e02eb9876f833712f6dc78 984 libapache2-mod-proxy-uwsgi_2.4.53-2ubuntu1_ppc64el.deb
Files:
 0ce443d2b7b14c073516bfba3a48d4c4 3953570 debug optional apache2-bin-dbgsym_2.4.53-2ubuntu1_ppc64el.ddeb
 592fdcd9a3bfbf4d10ad6218100ca638 1517006 httpd optional apache2-bin_2.4.53-2ubuntu1_ppc64el.deb
 db9d901028348c072142e6ddad56afa5 190598 httpd optional apache2-dev_2.4.53-2ubuntu1_ppc64el.deb
 2d060128729c729e4a8def6eeee4edb6 2978 httpd optional apache2-ssl-dev_2.4.53-2ubuntu1_ppc64el.deb
 37d1522f0d9bd5475de3cf58391f87a1 13328 debug optional apache2-suexec-custom-dbgsym_2.4.53-2ubuntu1_ppc64el.ddeb
 59955978b3b95f09c546c819046a7adc 16216 httpd optional apache2-suexec-custom_2.4.53-2ubuntu1_ppc64el.deb
 ba03b8edc6f1defc57b56bd720b0f2e8 11982 debug optional apache2-suexec-pristine-dbgsym_2.4.53-2ubuntu1_ppc64el.ddeb
 15f563cdd6e20e09cd368e7b85c8b56a 14560 httpd optional apache2-suexec-pristine_2.4.53-2ubuntu1_ppc64el.deb
 22d1413252c3bd339a082c825061169a 129682 debug optional apache2-utils-dbgsym_2.4.53-2ubuntu1_ppc64el.ddeb
 152b2bd313a29194eca59ebf348e5c91 93094 httpd optional apache2-utils_2.4.53-2ubuntu1_ppc64el.deb
 de8b9dd4cc3e2629003cbf84efd041f8 11517 httpd optional apache2_2.4.53-2ubuntu1_ppc64el.buildinfo
 58d9de61d47d7f100ce555f6e37d2e5a 97304 httpd optional apache2_2.4.53-2ubuntu1_ppc64el.deb
 4e49cd5c64a4917704b7011d1abac9f4 800 oldlibs optional libapache2-mod-md_2.4.53-2ubuntu1_ppc64el.deb
 e3c1e7f9d4084e4d9952b2c8a44172df 984 oldlibs optional libapache2-mod-proxy-uwsgi_2.4.53-2ubuntu1_ppc64el.deb
Original-Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>