Accepted apache2 2.2.22-13+deb7u8 (source amd64 all) into oldstable
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Wed, 22 Feb 2017 16:46:48 +0100
Source: apache2
Binary: apache2.2-common apache2.2-bin apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-mpm-itk apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-dbg
Architecture: source amd64 all
Version: 2.2.22-13+deb7u8
Distribution: wheezy-security
Urgency: high
Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>
Changed-By: Jonas Meurer <mejo@debian.org>
Description:
apache2 - Apache HTTP Server metapackage
apache2-dbg - Apache debugging symbols
apache2-doc - Apache HTTP Server documentation
apache2-mpm-event - Apache HTTP Server - event driven model
apache2-mpm-itk - multiuser MPM for Apache 2.2
apache2-mpm-prefork - Apache HTTP Server - traditional non-threaded model
apache2-mpm-worker - Apache HTTP Server - high speed threaded model
apache2-prefork-dev - Apache development headers - non-threaded MPM
apache2-suexec - Standard suexec program for Apache 2 mod_suexec
apache2-suexec-custom - Configurable suexec program for Apache 2 mod_suexec
apache2-threaded-dev - Apache development headers - threaded MPM
apache2-utils - utility programs for webservers
apache2.2-bin - Apache HTTP Server common binary files
apache2.2-common - Apache HTTP Server common files
Changes:
apache2 (2.2.22-13+deb7u8) wheezy-security; urgency=high
.
[ Antoine Beaupré ]
* Non-maintainer upload by the LTS Security Team.
* Security: CVE-2016-8743:
Enforce HTTP request grammar corresponding to RFC7230 for request lines
and request headers, to prevent response splitting and cache pollution by
malicious clients or downstream proxies.
* The stricter HTTP enforcement may cause compatibility problems with
non-conforming clients. Fine-tuning is possible with the new
HttpProtocolOptions directive.
.
[ Jonas Meurer ]
* Add CVE-2016-8743-svn1775232.patch: required after the CVE-2016-8743
related changes to handle valid requests correctly.
Checksums-Sha1:
67be1a3f94316eff74f8576123bebccb732827cd 2921 apache2_2.2.22-13+deb7u8.dsc
77b593a704b3b4b89b26475222d025c8e57b88a0 260228 apache2_2.2.22-13+deb7u8.debian.tar.gz
8c221d4b62cf574e0bd1b8aea57adf92f76d9606 293536 apache2.2-common_2.2.22-13+deb7u8_amd64.deb
67dcf57613e2410ab0c9b319cad98be8fc2d9e71 794144 apache2.2-bin_2.2.22-13+deb7u8_amd64.deb
82d2a0ef60e0f06ef57c3b27ef8990c2a1ef5b1f 2252 apache2-mpm-worker_2.2.22-13+deb7u8_amd64.deb
ea6a253cdc9e3d7010d5af1228e4531405fb72b9 2362 apache2-mpm-prefork_2.2.22-13+deb7u8_amd64.deb
06310b950fee2e7b1d804e1d57a784a20b23a4b7 2318 apache2-mpm-event_2.2.22-13+deb7u8_amd64.deb
fa48b53f2015860bf5ca9eea25e8ee5830301563 2342 apache2-mpm-itk_2.2.22-13+deb7u8_amd64.deb
742cfbbce6a12f31a8dc1101cf14cae09980cb92 164150 apache2-utils_2.2.22-13+deb7u8_amd64.deb
9c194f38431a6518b64f0f6eb7e56e8c3a33fbff 107608 apache2-suexec_2.2.22-13+deb7u8_amd64.deb
461ea9d74974dc04ca685a315e49fa574dc53dea 109108 apache2-suexec-custom_2.2.22-13+deb7u8_amd64.deb
bd5c525b343b8306dbe2be287a85ba02e2b86342 1446 apache2_2.2.22-13+deb7u8_amd64.deb
ca54b93dcb7cfa76dc929f5bbb568663e98ea816 1779838 apache2-doc_2.2.22-13+deb7u8_all.deb
3e55fc32e801b244c74bbeb29ed108005b27bcd0 114756 apache2-prefork-dev_2.2.22-13+deb7u8_amd64.deb
e845e691e4c3eede129a57071c7fafb72a86be4c 115608 apache2-threaded-dev_2.2.22-13+deb7u8_amd64.deb
fc983aff41b60fd5827a4ea6480052cb8fd34c4e 1739054 apache2-dbg_2.2.22-13+deb7u8_amd64.deb
Checksums-Sha256:
08fdbd068706bcbd426a0f2fdd3bd085b70d836e4ff0ee3a6f66aa7123536927 2921 apache2_2.2.22-13+deb7u8.dsc
42883e2940793ae7358af2ad14425243e106844367b06509fe7174ddc93a931a 260228 apache2_2.2.22-13+deb7u8.debian.tar.gz
1908eb528dee33ab2e74bb57c27f5181edaffde61f460a1c658fdd11536258b4 293536 apache2.2-common_2.2.22-13+deb7u8_amd64.deb
276d14eb6dcf1ca812c7b5fd9116c61c6ce186005e7b1b76c473ae5d6cdc165b 794144 apache2.2-bin_2.2.22-13+deb7u8_amd64.deb
18d6e9025f78978065eb4835800d46d975e5a4856cae2c921f7666aad2c6eb1e 2252 apache2-mpm-worker_2.2.22-13+deb7u8_amd64.deb
8af93c9103ef7b4f1b5666e466c9a7652afb20fd8ef5387c0162802169c0e7b1 2362 apache2-mpm-prefork_2.2.22-13+deb7u8_amd64.deb
84747da6a74902af625dee04d4fa4e5cc56553cb605088b2dd112acdb77c52f3 2318 apache2-mpm-event_2.2.22-13+deb7u8_amd64.deb
f5128b7bfe09400f64aaae2d109c9347403a03174b914d8f8a84569c9beaccd7 2342 apache2-mpm-itk_2.2.22-13+deb7u8_amd64.deb
97255c4e47535b56f00937c7713e91bbe7f8081464bb3f3e62e40c91b7a40b84 164150 apache2-utils_2.2.22-13+deb7u8_amd64.deb
839f4049657f6f6854ce5459006439dac3d368dbafae80355b5145c7515a8e45 107608 apache2-suexec_2.2.22-13+deb7u8_amd64.deb
90a6fe87840680a560fae6899f9bd1be7d37e3324092da3e1722461e167cdae4 109108 apache2-suexec-custom_2.2.22-13+deb7u8_amd64.deb
fb2d27f5fe34368ef24f25767997c3ea97d309510512d7029ba502de33bd4598 1446 apache2_2.2.22-13+deb7u8_amd64.deb
4cc563a2916d076e61b51f81f69b04006fb5bc72db92a8199a635986c9aedcb2 1779838 apache2-doc_2.2.22-13+deb7u8_all.deb
7675099860becb0f02d9d18553cc27bab0cfc705d33cd0ca9f5a92f5e97a79fb 114756 apache2-prefork-dev_2.2.22-13+deb7u8_amd64.deb
4d4920a12c5edacb9dc01a09aaadbf9acee03a7c41688c861f97dceba015f952 115608 apache2-threaded-dev_2.2.22-13+deb7u8_amd64.deb
5a1db6f650827d78e69ce987fd5bbe0ec3bd9749e041820ba7e38bce6a922d93 1739054 apache2-dbg_2.2.22-13+deb7u8_amd64.deb
Files:
8879f48bb550312964506fed3e9a48f6 2921 httpd optional apache2_2.2.22-13+deb7u8.dsc
5a228b6ca25e0809878045ec2a73bbc3 260228 httpd optional apache2_2.2.22-13+deb7u8.debian.tar.gz
ceebb8e377c3359216f888e3e4f81cff 293536 httpd optional apache2.2-common_2.2.22-13+deb7u8_amd64.deb
7adb49de23e9f0d831d0d2ee0725e0c9 794144 httpd optional apache2.2-bin_2.2.22-13+deb7u8_amd64.deb
10a4836f08c599b566080f464bc58b15 2252 httpd optional apache2-mpm-worker_2.2.22-13+deb7u8_amd64.deb
bccc0238f08522d0a43a7633af2df051 2362 httpd optional apache2-mpm-prefork_2.2.22-13+deb7u8_amd64.deb
08318e8a8f05800cb3af32eb39825081 2318 httpd optional apache2-mpm-event_2.2.22-13+deb7u8_amd64.deb
192d548daadbeae6dc4934eb4328b47b 2342 httpd extra apache2-mpm-itk_2.2.22-13+deb7u8_amd64.deb
3c81492668aa1f186608042864d0fa3e 164150 httpd optional apache2-utils_2.2.22-13+deb7u8_amd64.deb
47d8bb601158a1fe164392282c3e2c7e 107608 httpd optional apache2-suexec_2.2.22-13+deb7u8_amd64.deb
70d556a395b31db9b34238e5090865fd 109108 httpd extra apache2-suexec-custom_2.2.22-13+deb7u8_amd64.deb
e75faf824c5936c8aa7415547d3ec788 1446 httpd optional apache2_2.2.22-13+deb7u8_amd64.deb
24eae05eb0b7d0f3634cf5ca0ab1e9d2 1779838 doc optional apache2-doc_2.2.22-13+deb7u8_all.deb
634c08fbf57753df1d80f1ba7318115b 114756 httpd extra apache2-prefork-dev_2.2.22-13+deb7u8_amd64.deb
9f1985daac34b288c6f733a495afa138 115608 httpd extra apache2-threaded-dev_2.2.22-13+deb7u8_amd64.deb
f1becce8f07b11ec60fb7e9250566448 1739054 debug extra apache2-dbg_2.2.22-13+deb7u8_amd64.deb
-----BEGIN PGP SIGNATURE-----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=Xgvw
-----END PGP SIGNATURE-----