Format: 1.8
Date: Mon, 23 May 2022 19:34:18 -0700
Source: apache2
Binary: apache2 apache2-bin apache2-dev apache2-ssl-dev apache2-suexec-custom apache2-suexec-pristine apache2-utils libapache2-mod-md libapache2-mod-proxy-uwsgi
Built-For-Profiles: noudeb
Architecture: riscv64
Version: 2.4.53-2ubuntu1
Distribution: kinetic-proposed
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@riscv64-qemu-lgw01-018.buildd>
Changed-By: Bryce Harrington <bryce@canonical.com>
Description:
 apache2    - Apache HTTP Server
 apache2-bin - Apache HTTP Server (modules and other binary files)
 apache2-dev - Apache HTTP Server (development headers)
 apache2-ssl-dev - Apache HTTP Server (mod_ssl development headers)
 apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec
 apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec
 apache2-utils - Apache HTTP Server (utility programs for web servers)
 libapache2-mod-md - transitional package
 libapache2-mod-proxy-uwsgi - transitional package
Launchpad-Bugs-Fixed: 1971248
Changes:
 apache2 (2.4.53-2ubuntu1) kinetic; urgency=medium
 .
   * Merge with Debian unstable (LP: #1971248). Remaining changes:
     - debian/{control, apache2.install, apache2-utils.ufw.profile,
       apache2.dirs}: Add ufw profiles.
       (LP 261198)
     - debian/apache2.py, debian/apache2-bin.install: Add apport hook.
       (LP 609177)
     - d/index.html, d/icons/ubuntu-logo.png, d/apache2.postrm,
       d/s/include-binaries: replace Debian with Ubuntu on default
       page and add Ubuntu icon file.
       (LP 1288690)
     - d/index.html, d/icons/ubuntu-logo.png:  Refresh page design and
       new logo
       (LP 1966004)
     - d/apache2.postrm: Include md5 sum for updated index.html
   * Dropped:
     - OOB read in mod_lua via crafted request body
       + d/p/CVE-2022-22719.patch: error out if lua_read_body() or
         lua_write_body() fail in modules/lua/lua_request.c.
       [Fixed in 2.4.53 upstream]
     - HTTP Request Smuggling via error discarding the
       request body
       + d/p/CVE-2022-22720.patch: simpler connection close logic
         if discarding the request body fails in modules/http/http_filters.c,
         server/protocol.c.
       [Fixed in 2.4.53 upstream]
     - overflow via large LimitXMLRequestBody
       + d/p/CVE-2022-22721.patch: make sure and check that
         LimitXMLRequestBody fits in system memory in server/core.c,
         server/util.c, server/util_xml.c.
       [Fixed in 2.4.53 upstream]
     - out-of-bounds write in mod_sed
       + d/p/CVE-2022-23943-1.patch: use size_t to allow for larger
         buffer sizes and unsigned arithmetics in modules/filters/libsed.h,
         modules/filters/mod_sed.c, modules/filters/sed1.c.
       + d/p/CVE-2022-23943-2.patch: improve the logic flow in
         modules/filters/mod_sed.c.
       [Fixed in 2.4.53 upstream]
Checksums-Sha1:
 985ee16bc90026bd83a79a2da1b920b63703ddc2 3709336 apache2-bin-dbgsym_2.4.53-2ubuntu1_riscv64.ddeb
 f223437a6ff0342320760b51703ff63db8deee5b 1143894 apache2-bin_2.4.53-2ubuntu1_riscv64.deb
 23f0615ac31befd80c3a712e438950d615e2f4ea 190568 apache2-dev_2.4.53-2ubuntu1_riscv64.deb
 962261064fe116c423c2d38fac96021928e58e21 2982 apache2-ssl-dev_2.4.53-2ubuntu1_riscv64.deb
 0d10621451f95921202c6bbdeebad52651268b4c 12610 apache2-suexec-custom-dbgsym_2.4.53-2ubuntu1_riscv64.ddeb
 d978381155a81cc97adb524109b0b0db25f6018c 15444 apache2-suexec-custom_2.4.53-2ubuntu1_riscv64.deb
 79469976ce13a43eb5c7474cff05dff7ec3aa1aa 11410 apache2-suexec-pristine-dbgsym_2.4.53-2ubuntu1_riscv64.ddeb
 8f3d35b94230f949c2ca0babd79e02b57cd050c4 13992 apache2-suexec-pristine_2.4.53-2ubuntu1_riscv64.deb
 e08ebd25acd6d911feccc51eb6ea05315345c34f 119266 apache2-utils-dbgsym_2.4.53-2ubuntu1_riscv64.ddeb
 888fd7961b1aa5c49d77ea9928304cee5829663f 82588 apache2-utils_2.4.53-2ubuntu1_riscv64.deb
 3d2f6f79eb12d4082505fc4e17e73b17d8da49d1 11329 apache2_2.4.53-2ubuntu1_riscv64.buildinfo
 69d11fa1fc2e7769f45a3f84462b6e12bf293c90 97304 apache2_2.4.53-2ubuntu1_riscv64.deb
 5490b37abaa87c2c641923b49aff52ef1975fb9b 802 libapache2-mod-md_2.4.53-2ubuntu1_riscv64.deb
 21e2714f4a1f3540c250f54900bfc79ce9c33ffd 984 libapache2-mod-proxy-uwsgi_2.4.53-2ubuntu1_riscv64.deb
Checksums-Sha256:
 2339d41e8bb025a29ecb4fa23a166b2d00ee5616c017c9aff8c43c1071ca30a7 3709336 apache2-bin-dbgsym_2.4.53-2ubuntu1_riscv64.ddeb
 d254ab23648943a660161987bb556d54d3f4e51f1d6b40a29bc0bf360d15b5f8 1143894 apache2-bin_2.4.53-2ubuntu1_riscv64.deb
 21ca91b0b8801cc52bd0900afbe99625f22d5b8be94efa7b6cc1dd3db67efe08 190568 apache2-dev_2.4.53-2ubuntu1_riscv64.deb
 08727804d8710539fcd5a81c3ce089c0c395167df1e0f7619a0f8fb086dbb007 2982 apache2-ssl-dev_2.4.53-2ubuntu1_riscv64.deb
 1ae099ff52582f476ff3c3c51316a6f531fbe560d0d53891277c0aa06ffaa9b5 12610 apache2-suexec-custom-dbgsym_2.4.53-2ubuntu1_riscv64.ddeb
 52d86aaa78bfc59e32ede74fead78b32aadc65e94ff53ef69186c4ffbe17102b 15444 apache2-suexec-custom_2.4.53-2ubuntu1_riscv64.deb
 6bc623fe8c7139ebefef8255b655fe97ccc9e81970f0de0003408dc2a518d181 11410 apache2-suexec-pristine-dbgsym_2.4.53-2ubuntu1_riscv64.ddeb
 d6efd9ab57804251cbd9903d39aa29c28d7926ace2e6a98909ee0cdc08ac5d03 13992 apache2-suexec-pristine_2.4.53-2ubuntu1_riscv64.deb
 35872f58af9840b497210a31b1d16793377ecd2c490d4accd4e67f0dc02961b5 119266 apache2-utils-dbgsym_2.4.53-2ubuntu1_riscv64.ddeb
 9783addb64e07783055fafaefdcd5d085a9d0664cc348829cb9605fe987f5a8e 82588 apache2-utils_2.4.53-2ubuntu1_riscv64.deb
 38d226e41647181881857796c63aae05d1b8670240107c56382a746c5fb8c429 11329 apache2_2.4.53-2ubuntu1_riscv64.buildinfo
 fa860e7ade35f4f8dbc727011cf2ddd765b7ed23de3f81c7b0ee0cb85fb54e9b 97304 apache2_2.4.53-2ubuntu1_riscv64.deb
 7aa5dda2d4f66f5f2e96419d496716dde4336485fca5853e3292c0476ded8edd 802 libapache2-mod-md_2.4.53-2ubuntu1_riscv64.deb
 f3a628d5bce8cc9e1f38ea832237a9ad460b124ffa18146b893a444fb28dbfa3 984 libapache2-mod-proxy-uwsgi_2.4.53-2ubuntu1_riscv64.deb
Files:
 b94f493e9d75bd675a113ef4ae33010b 3709336 debug optional apache2-bin-dbgsym_2.4.53-2ubuntu1_riscv64.ddeb
 2462e0858f2e6754b70cdfde5c6652b0 1143894 httpd optional apache2-bin_2.4.53-2ubuntu1_riscv64.deb
 726facc4525513169b6b9789a936d4b1 190568 httpd optional apache2-dev_2.4.53-2ubuntu1_riscv64.deb
 1849f8903f5243b8e10367db8247ef6b 2982 httpd optional apache2-ssl-dev_2.4.53-2ubuntu1_riscv64.deb
 136b2864cd2eb292b3db90b829c3885f 12610 debug optional apache2-suexec-custom-dbgsym_2.4.53-2ubuntu1_riscv64.ddeb
 40bcff67b9cde54aa284f60b9b4d8541 15444 httpd optional apache2-suexec-custom_2.4.53-2ubuntu1_riscv64.deb
 a0bde02b9dcab4e3024eccebb3ba9b76 11410 debug optional apache2-suexec-pristine-dbgsym_2.4.53-2ubuntu1_riscv64.ddeb
 d27e726731cba61a2b397cb892f4cdb5 13992 httpd optional apache2-suexec-pristine_2.4.53-2ubuntu1_riscv64.deb
 27031af0be6bca3fb83aca7567e950ec 119266 debug optional apache2-utils-dbgsym_2.4.53-2ubuntu1_riscv64.ddeb
 671d27c85c54ddb012309a1a7557f6a6 82588 httpd optional apache2-utils_2.4.53-2ubuntu1_riscv64.deb
 67693eeda4add9f522e3b9debae3604f 11329 httpd optional apache2_2.4.53-2ubuntu1_riscv64.buildinfo
 723e3b51079077a66807aebb743710c9 97304 httpd optional apache2_2.4.53-2ubuntu1_riscv64.deb
 d42d20b5271fad01c1ff43839848f70b 802 oldlibs optional libapache2-mod-md_2.4.53-2ubuntu1_riscv64.deb
 2c36a6c0641f116b65795ab5c2529f75 984 oldlibs optional libapache2-mod-proxy-uwsgi_2.4.53-2ubuntu1_riscv64.deb
Original-Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>