-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 04 Oct 2024 15:21:08 +0000
Source: apache2
Binary: apache2 apache2-bin apache2-bin-dbgsym apache2-dev apache2-ssl-dev apache2-suexec-custom apache2-suexec-custom-dbgsym apache2-suexec-pristine apache2-suexec-pristine-dbgsym apache2-utils apache2-utils-dbgsym libapache2-mod-md libapache2-mod-proxy-uwsgi
Architecture: armel
Version: 2.4.62-1~deb12u2
Distribution: bookworm-security
Urgency: medium
Maintainer: arm Build Daemon (arm-conova-02) <buildd_arm64-arm-conova-02@buildd.debian.org>
Changed-By: Bastien Roucariès <rouca@debian.org>
Description:
 apache2    - Apache HTTP Server
 apache2-bin - Apache HTTP Server (modules and other binary files)
 apache2-dev - Apache HTTP Server (development headers)
 apache2-ssl-dev - Apache HTTP Server (mod_ssl development headers)
 apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec
 apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec
 apache2-utils - Apache HTTP Server (utility programs for web servers)
 libapache2-mod-md - transitional package
 libapache2-mod-proxy-uwsgi - transitional package
Closes: 1079172 1079206
Changes:
 apache2 (2.4.62-1~deb12u2) bookworm-security; urgency=medium
 .
   * Fix CVE-2024-38474 regression:
     Better question mark tracking to avoid UnsafeAllow3F
     (Closes: #1079172)
   * Fix CVE-2024-39884 regression:
     Trust strings from configuration in mod_proxy
     (Closes: #1079206)
   * Add myself as maintainer with Yadd agreement
Checksums-Sha1:
 30c5238612f93f246e1008bd606b49bc2d982521 3291188 apache2-bin-dbgsym_2.4.62-1~deb12u2_armel.deb
 6bdd16f51d14b8500a5bde5e532f8c2d9a9ec6c5 1180796 apache2-bin_2.4.62-1~deb12u2_armel.deb
 39bb89707f868e1eaf18a103f444a21ca09818b0 315568 apache2-dev_2.4.62-1~deb12u2_armel.deb
 2837811d143226ad3e1c1ced2226b797a5ff3420 3140 apache2-ssl-dev_2.4.62-1~deb12u2_armel.deb
 5b2c5da18d9be08d9b28499d9f6705b126d68af2 12264 apache2-suexec-custom-dbgsym_2.4.62-1~deb12u2_armel.deb
 e01c662bcb5b6d3b9ffa57a8b4770a762f64d151 142528 apache2-suexec-custom_2.4.62-1~deb12u2_armel.deb
 922a6168c73c474dcd3bb2bcafa9e00c6047bf4f 11036 apache2-suexec-pristine-dbgsym_2.4.62-1~deb12u2_armel.deb
 202f9baf937c29afe9f5f876f10e20cdba8d68e3 141012 apache2-suexec-pristine_2.4.62-1~deb12u2_armel.deb
 2eb46c2c318166795d562527e1dcce5e1db84471 116900 apache2-utils-dbgsym_2.4.62-1~deb12u2_armel.deb
 78596ba7918d4d4b187f57a2d71c737acef93797 209472 apache2-utils_2.4.62-1~deb12u2_armel.deb
 7bb02f46a1f553defc267ac06783bb0635cc5066 11527 apache2_2.4.62-1~deb12u2_armel-buildd.buildinfo
 f0549c63f66b6b32eb2c7ddaba4be94126958bcc 222752 apache2_2.4.62-1~deb12u2_armel.deb
 8f97832e85fc61b8586ba9c18be19798b51feec6 948 libapache2-mod-md_2.4.62-1~deb12u2_armel.deb
 d154928d45169acfc93e01f6accd96a032555ec7 1136 libapache2-mod-proxy-uwsgi_2.4.62-1~deb12u2_armel.deb
Checksums-Sha256:
 f1ecafa356b78c7eaa72d71f2ba7ecb7447e3d9dc4eeb304167e69efe8100350 3291188 apache2-bin-dbgsym_2.4.62-1~deb12u2_armel.deb
 9cc28eeb4ff583f53073a730d63dad6d512b6b0f89351aed7feecc69cc0403ab 1180796 apache2-bin_2.4.62-1~deb12u2_armel.deb
 c6396f14e2440d9cf5d39fb2bd39e799508965d9d9403d2e57c54eedac9e01d6 315568 apache2-dev_2.4.62-1~deb12u2_armel.deb
 0fb82807fc119b15d04a259fb23b427f3adbcdcb187d47858e44990557e95927 3140 apache2-ssl-dev_2.4.62-1~deb12u2_armel.deb
 89c179a9d59850a19955a4c5d62853cb9dc64635240b13d65a8c3d346817af91 12264 apache2-suexec-custom-dbgsym_2.4.62-1~deb12u2_armel.deb
 d443c64a1c94b1c6f54431af8ce3e25bf151b623f76a53b6a9b63fc30ece794f 142528 apache2-suexec-custom_2.4.62-1~deb12u2_armel.deb
 a0a804fb7a04da6154057e0758bd6c36c1438b9b7996f5aa4cf60a616d05ed2b 11036 apache2-suexec-pristine-dbgsym_2.4.62-1~deb12u2_armel.deb
 fc1bcca3188084a6ebdd0fbea1cd16963b6470e3ccd4cd8a04239dbde99fbebc 141012 apache2-suexec-pristine_2.4.62-1~deb12u2_armel.deb
 1c72ce291f7bd4f5ccb036ef30a4c5b643c022c592aac5b9b319b803703bc271 116900 apache2-utils-dbgsym_2.4.62-1~deb12u2_armel.deb
 7d5d1897fbdff2cedfca683fbd94d6093bb85ba10d846552ace5dc5e3d79d281 209472 apache2-utils_2.4.62-1~deb12u2_armel.deb
 d2b0a2971c4c29dfb8fd39595752e6bd67c6b24f13b0bce165a83ea7eafc4b36 11527 apache2_2.4.62-1~deb12u2_armel-buildd.buildinfo
 7ed767a598899b7e87f3eea58dad645ade8c24ac6507d9bb097127fd43c0d921 222752 apache2_2.4.62-1~deb12u2_armel.deb
 3c8129d9bf40e982ae5a5e4fceaa9e74c923d5875d318fe1494cad28afb7e984 948 libapache2-mod-md_2.4.62-1~deb12u2_armel.deb
 e3bfd45457da39e0a5fb6277bf6015a7afcd7d5951bd55e1aaac6a5bc9ec4a86 1136 libapache2-mod-proxy-uwsgi_2.4.62-1~deb12u2_armel.deb
Files:
 5254c820e21dc116092669e97b4291d5 3291188 debug optional apache2-bin-dbgsym_2.4.62-1~deb12u2_armel.deb
 0c5206ba25e0efe2325431af52443e9d 1180796 httpd optional apache2-bin_2.4.62-1~deb12u2_armel.deb
 529abf3d3207dc74835e02ed96433725 315568 httpd optional apache2-dev_2.4.62-1~deb12u2_armel.deb
 2a2920a479d6981119adf6a18d1c219b 3140 httpd optional apache2-ssl-dev_2.4.62-1~deb12u2_armel.deb
 314c37cde2f1083f9b3efa727e3ff506 12264 debug optional apache2-suexec-custom-dbgsym_2.4.62-1~deb12u2_armel.deb
 5c1df279de6f30f4f4cffb391ca7808d 142528 httpd optional apache2-suexec-custom_2.4.62-1~deb12u2_armel.deb
 5e594afe2ad87c3577e341776171e196 11036 debug optional apache2-suexec-pristine-dbgsym_2.4.62-1~deb12u2_armel.deb
 7b46802846cbb4500902d3be9c04b9db 141012 httpd optional apache2-suexec-pristine_2.4.62-1~deb12u2_armel.deb
 637145e4ca70c4a4d0ad81b5e646a1e6 116900 debug optional apache2-utils-dbgsym_2.4.62-1~deb12u2_armel.deb
 823a14511c056a4ab85b7dee178a7d81 209472 httpd optional apache2-utils_2.4.62-1~deb12u2_armel.deb
 fbab4781ba9e8f8c2eb60213659f81f9 11527 httpd optional apache2_2.4.62-1~deb12u2_armel-buildd.buildinfo
 c442cb41f686b7c0b2873c15f7cab8eb 222752 httpd optional apache2_2.4.62-1~deb12u2_armel.deb
 eafb8a16963bdc1125fdebbc4d62d45c 948 oldlibs optional libapache2-mod-md_2.4.62-1~deb12u2_armel.deb
 6029838cc9b1ec5652d1c1caf1dcf529 1136 oldlibs optional libapache2-mod-proxy-uwsgi_2.4.62-1~deb12u2_armel.deb

-----BEGIN PGP SIGNATURE-----
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=sFvd
-----END PGP SIGNATURE-----