Format: 1.8
Date: Mon, 26 Jun 2017 07:58:04 -0400
Source: apache2
Binary: apache2 apache2-data apache2-bin apache2-utils apache2-suexec-pristine apache2-suexec-custom apache2-doc apache2-dev apache2-dbg
Architecture: ppc64el
Version: 2.4.18-2ubuntu3.3
Distribution: xenial
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos01-ppc64el-025.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 apache2    - Apache HTTP Server
 apache2-bin - Apache HTTP Server (modules and other binary files)
 apache2-data - Apache HTTP Server (common files)
 apache2-dbg - Apache debugging symbols
 apache2-dev - Apache HTTP Server (development headers)
 apache2-doc - Apache HTTP Server (on-site documentation)
 apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec
 apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec
 apache2-utils - Apache HTTP Server (utility programs for web servers)
Changes:
 apache2 (2.4.18-2ubuntu3.3) xenial-security; urgency=medium
 .
   * SECURITY UPDATE: authentication bypass in ap_get_basic_auth_pw()
     - debian/patches/CVE-2017-3167.patch: deprecate and replace
       ap_get_basic_auth_pw in include/ap_mmn.h, include/http_protocol.h,
       server/protocol.c, server/request.c.
     - CVE-2017-3167
   * SECURITY UPDATE: NULL pointer deref in ap_hook_process_connection()
     - debian/patches/CVE-2017-3169.patch: fix ctx passed to
       ssl_io_filter_error() in modules/ssl/ssl_engine_io.c.
     - CVE-2017-3169
   * SECURITY UPDATE: denial of service and possible incorrect value return
     in HTTP strict parsing changes
     - debian/patches/CVE-2017-7668.patch: short-circuit on NULL in
       server/util.c.
     - CVE-2017-7668
   * SECURITY UPDATE: mod_mime DoS via crafted Content-Type response header
     - debian/patches/CVE-2017-7679.patch: fix quoted pair scanning in
       modules/http/mod_mime.c.
     - CVE-2017-7679
Checksums-Sha1:
 12b5c159d6998ae5fd322755bd349be95dfa783e 994 apache2-bin-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 0542261414e62e2b0be4cb3d03f8c457bef3f842 883382 apache2-bin_2.4.18-2ubuntu3.3_ppc64el.deb
 cb784aae2b94f49858c06ed584e44bc108a0deb9 2246792 apache2-dbg_2.4.18-2ubuntu3.3_ppc64el.deb
 262b0ce45488a05a75dee8a895bd99129e3efd62 972 apache2-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 71246f24607793473c42713f75593fae4a5d7f85 1112 apache2-dev-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 986e22a7c45a6a901ced8f4917febf84824949ad 173194 apache2-dev_2.4.18-2ubuntu3.3_ppc64el.deb
 f9f962749c4b62dc98e4296c9647c8fb9babafb1 978 apache2-suexec-custom-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 832ab7d9de9389aadee4375bc266dfd9b6865a88 15204 apache2-suexec-custom_2.4.18-2ubuntu3.3_ppc64el.deb
 3e211d7a709a224572e8a60df4156ac2098db147 920 apache2-suexec-pristine-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 e3f762fe25dbd6aa32f1e8018e24d4389da3318d 13646 apache2-suexec-pristine_2.4.18-2ubuntu3.3_ppc64el.deb
 6becc14c63118a1afab9274df2a3c131d4095cf9 1192 apache2-utils-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 bc492dd497371ad6a24909a9a80494ce8e122985 81292 apache2-utils_2.4.18-2ubuntu3.3_ppc64el.deb
 aabdb2db4057e31a9d74e933c52bad28303f25e4 86734 apache2_2.4.18-2ubuntu3.3_ppc64el.deb
Checksums-Sha256:
 78fa87936f52fc9d414d4861386b2456946f176f725c6d7e35083ddec10508a0 994 apache2-bin-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 fa59d3e5fd31ba50b68f0234e923d75426745d40c48127689d86bc32ed0bf6cd 883382 apache2-bin_2.4.18-2ubuntu3.3_ppc64el.deb
 a830db54cb7b04da0aef708eded54879df18335abb4b48df9cf2eb182e0d38e3 2246792 apache2-dbg_2.4.18-2ubuntu3.3_ppc64el.deb
 501668bd1b9810dcd2ea8f4484c3b1a534721d217c1aed2a50929b6793a6b719 972 apache2-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 ccf497a3288ff64cd8cf6fa6056d39f38820c7d4ce947bd94bcbd1b2dc5cdc51 1112 apache2-dev-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 32518c437f2353edfa6d7bae666e6c4f2f8a004765d9ec24c1ddfb0a12c2fc8f 173194 apache2-dev_2.4.18-2ubuntu3.3_ppc64el.deb
 dc0a9499838f9d4dde8413a9793c04a99fbf4e028eb445c2e1af9348153876c5 978 apache2-suexec-custom-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 5f858d5bde9ca121da078466152737058abec82e8506ac894cf2288391eb0f23 15204 apache2-suexec-custom_2.4.18-2ubuntu3.3_ppc64el.deb
 29bf6eda83f09431cb99a189217df81395c063c007e5cc1b77b08617bf0da38e 920 apache2-suexec-pristine-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 15f575fc047fb232995b826b86e9bf50edfbcd6d0a2b8904992171061af3a24a 13646 apache2-suexec-pristine_2.4.18-2ubuntu3.3_ppc64el.deb
 e7a5519e0ba7114615ec8d82dff5a667594e052a6246589a6ee17f472c2987f1 1192 apache2-utils-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 d4a2eb27b48ba9eb93a04be042dc434d907df4086c3da991082f25453540096c 81292 apache2-utils_2.4.18-2ubuntu3.3_ppc64el.deb
 049671c00a1d85a2b3ce17e42fed5db44cf6b0741825bbe692a0d8ce1c1c5513 86734 apache2_2.4.18-2ubuntu3.3_ppc64el.deb
Files:
 81036c3e6c90589aee9a1ef11b4f4b3d 994 httpd extra apache2-bin-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 e86a880a59bc75a6d5d81eebff678422 883382 httpd optional apache2-bin_2.4.18-2ubuntu3.3_ppc64el.deb
 90f487c7d19503ea6712f229e0597e29 2246792 debug extra apache2-dbg_2.4.18-2ubuntu3.3_ppc64el.deb
 df0da89cdd5f2322163060859a275b8a 972 httpd extra apache2-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 ca69ac57a822f050a2dc48097842bf61 1112 httpd extra apache2-dev-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 c921a2533738e2d76bfdbdd9b38d42cc 173194 httpd optional apache2-dev_2.4.18-2ubuntu3.3_ppc64el.deb
 b6dc15e2e1fc6ab8eb7bbe6cadd0b050 978 httpd extra apache2-suexec-custom-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 7ffa084957d9e5f37ca95e2cf159c768 15204 httpd extra apache2-suexec-custom_2.4.18-2ubuntu3.3_ppc64el.deb
 30a24fb3b94910e83ae853f007066a46 920 httpd extra apache2-suexec-pristine-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 70db28ed7e49a15278cbda12e1173429 13646 httpd optional apache2-suexec-pristine_2.4.18-2ubuntu3.3_ppc64el.deb
 46111cb65d6f3e1ed7282f10fca38c96 1192 httpd extra apache2-utils-dbgsym_2.4.18-2ubuntu3.3_ppc64el.ddeb
 bf91d0340b59e5be9b009423c5415341 81292 httpd optional apache2-utils_2.4.18-2ubuntu3.3_ppc64el.deb
 873afe4e039ca412c41bb9ca9af01799 86734 httpd optional apache2_2.4.18-2ubuntu3.3_ppc64el.deb
Original-Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>