-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 04 Oct 2024 15:21:08 +0000
Source: apache2
Binary: apache2 apache2-bin apache2-bin-dbgsym apache2-dev apache2-ssl-dev apache2-suexec-custom apache2-suexec-custom-dbgsym apache2-suexec-pristine apache2-suexec-pristine-dbgsym apache2-utils apache2-utils-dbgsym libapache2-mod-md libapache2-mod-proxy-uwsgi
Architecture: arm64
Version: 2.4.62-1~deb12u2
Distribution: bookworm-security
Urgency: medium
Maintainer: arm Build Daemon (arm-conova-04) <buildd_arm64-arm-conova-04@buildd.debian.org>
Changed-By: Bastien Roucariès <rouca@debian.org>
Description:
 apache2    - Apache HTTP Server
 apache2-bin - Apache HTTP Server (modules and other binary files)
 apache2-dev - Apache HTTP Server (development headers)
 apache2-ssl-dev - Apache HTTP Server (mod_ssl development headers)
 apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec
 apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec
 apache2-utils - Apache HTTP Server (utility programs for web servers)
 libapache2-mod-md - transitional package
 libapache2-mod-proxy-uwsgi - transitional package
Closes: 1079172 1079206
Changes:
 apache2 (2.4.62-1~deb12u2) bookworm-security; urgency=medium
 .
   * Fix CVE-2024-38474 regression:
     Better question mark tracking to avoid UnsafeAllow3F
     (Closes: #1079172)
   * Fix CVE-2024-39884 regression:
     Trust strings from configuration in mod_proxy
     (Closes: #1079206)
   * Add myself as maintainer with Yadd agreement
Checksums-Sha1:
 2701549e2eaab4156add14eefa9f7840c9968e2d 3747876 apache2-bin-dbgsym_2.4.62-1~deb12u2_arm64.deb
 6cb7d14aca704f037ac45822eeef7e71e60c35be 1277888 apache2-bin_2.4.62-1~deb12u2_arm64.deb
 9c6a4ed15fc3cfac7fdf9bf53999949a3c5e20e7 315556 apache2-dev_2.4.62-1~deb12u2_arm64.deb
 8660f7a6f096a6119a54d25e4e3f32ec7af71d07 3140 apache2-ssl-dev_2.4.62-1~deb12u2_arm64.deb
 02a4c60915fbef155264eb0991a0f9a81136c741 12508 apache2-suexec-custom-dbgsym_2.4.62-1~deb12u2_arm64.deb
 9d6f140980c13848382a8660d7b1946d404dbc8f 143040 apache2-suexec-custom_2.4.62-1~deb12u2_arm64.deb
 ef3194ed0c733aeb57ee78c207d631e654f56722 11328 apache2-suexec-pristine-dbgsym_2.4.62-1~deb12u2_arm64.deb
 762ae5dc1b62bf215ac9de8f0812b42b1524af6f 141560 apache2-suexec-pristine_2.4.62-1~deb12u2_arm64.deb
 7df304eaa272b49ffcb25208a1ed57b00a35f1a4 117656 apache2-utils-dbgsym_2.4.62-1~deb12u2_arm64.deb
 c899e173c5dda66e6defe044a02a651f1acc22af 207136 apache2-utils_2.4.62-1~deb12u2_arm64.deb
 27cb1d5a9616c598641bc627aee27c1f74491c71 11653 apache2_2.4.62-1~deb12u2_arm64-buildd.buildinfo
 25993020f8a2db600f86029b4ece9a27b8fc0216 222756 apache2_2.4.62-1~deb12u2_arm64.deb
 dae096f9c9e14f982db6eb24044ca2f3f9f3147a 948 libapache2-mod-md_2.4.62-1~deb12u2_arm64.deb
 ba2c08897b5e7cdc45ad2fb94cb214622edc1509 1136 libapache2-mod-proxy-uwsgi_2.4.62-1~deb12u2_arm64.deb
Checksums-Sha256:
 244c334e492f3d0c79434a36e596f86635a5db89a3a83ce4ffc1ca4feffe1f05 3747876 apache2-bin-dbgsym_2.4.62-1~deb12u2_arm64.deb
 2c99fffd70194889c297af50621b0a7ade5c6e942dca1059b1d9d66ca56e94eb 1277888 apache2-bin_2.4.62-1~deb12u2_arm64.deb
 d88e6f4da91f1c1d0b3c9fa354b6bbc66691f58b36b8239479c6fd7983d1b74f 315556 apache2-dev_2.4.62-1~deb12u2_arm64.deb
 a57079cabe06e9b47f2df6eae325ada7cc14dcfc0d1a49f13e06d982875cb513 3140 apache2-ssl-dev_2.4.62-1~deb12u2_arm64.deb
 0394e7603a708773c0975d9ea93a9e9b61a64c606ee3c977324d29ba46e0054f 12508 apache2-suexec-custom-dbgsym_2.4.62-1~deb12u2_arm64.deb
 e3eed112cecf17e4a2eca2ebda381386c5d579f893f2147d8c9fccb2f46ed4d3 143040 apache2-suexec-custom_2.4.62-1~deb12u2_arm64.deb
 38b52b77c1724aa93e721cacfe57e7056047f555b69f0b320dcd40dba32675f4 11328 apache2-suexec-pristine-dbgsym_2.4.62-1~deb12u2_arm64.deb
 6e3c1ae52ede0e2d0dd31f6aa1f0081e3576a8a74c15091bd499a5f3fcd739bf 141560 apache2-suexec-pristine_2.4.62-1~deb12u2_arm64.deb
 bd1baf44a5ca99101cd9a800f3438773236c75a7c5fc49feb9d122fcd6da1592 117656 apache2-utils-dbgsym_2.4.62-1~deb12u2_arm64.deb
 0392baa6ac8683c612cf50778e979a0e5885b66a46224e290af568072cdbd65b 207136 apache2-utils_2.4.62-1~deb12u2_arm64.deb
 117727ed2bfdb6352924247a82ad3e79769536b6ef84a7456f467b1eb34f25d8 11653 apache2_2.4.62-1~deb12u2_arm64-buildd.buildinfo
 13faa965d13b41cfdfb825544e6bb7ed8d0c194bf943f8ca80069da0a616f030 222756 apache2_2.4.62-1~deb12u2_arm64.deb
 7563894454f6f53a659a126da31e7c76cedcf613de03c42f8e8e8e8902e98023 948 libapache2-mod-md_2.4.62-1~deb12u2_arm64.deb
 9428b652970c6772b3e5229cd4800c3aefc499c7de566b30958f3a90edb90846 1136 libapache2-mod-proxy-uwsgi_2.4.62-1~deb12u2_arm64.deb
Files:
 e84a0fd9ef507cc8699eab170b7146a5 3747876 debug optional apache2-bin-dbgsym_2.4.62-1~deb12u2_arm64.deb
 9fee7d44fb64eed72ea75833627123b1 1277888 httpd optional apache2-bin_2.4.62-1~deb12u2_arm64.deb
 b156c3cf41ccaa6152dce2181552c7b2 315556 httpd optional apache2-dev_2.4.62-1~deb12u2_arm64.deb
 143c057f9d4dab2292815bbe633c0eb8 3140 httpd optional apache2-ssl-dev_2.4.62-1~deb12u2_arm64.deb
 50c94ec4f8b96a75c273f021bdc97d3f 12508 debug optional apache2-suexec-custom-dbgsym_2.4.62-1~deb12u2_arm64.deb
 e4888c88fbbb57a1247f791937ca43b9 143040 httpd optional apache2-suexec-custom_2.4.62-1~deb12u2_arm64.deb
 024f16383e37779ee3f9173711da5d89 11328 debug optional apache2-suexec-pristine-dbgsym_2.4.62-1~deb12u2_arm64.deb
 5c721a6a98b04feae903dd9e70643436 141560 httpd optional apache2-suexec-pristine_2.4.62-1~deb12u2_arm64.deb
 e1ae04be37927666e16a43b86e95369d 117656 debug optional apache2-utils-dbgsym_2.4.62-1~deb12u2_arm64.deb
 0eb64264836a3a82368a503870e4c6f9 207136 httpd optional apache2-utils_2.4.62-1~deb12u2_arm64.deb
 55287d7960aa75eb1c3594652404aae3 11653 httpd optional apache2_2.4.62-1~deb12u2_arm64-buildd.buildinfo
 8e3ffc9960dabd41d09c5bf6642101d0 222756 httpd optional apache2_2.4.62-1~deb12u2_arm64.deb
 77d122f775f46a5e0bf9581f2d73f050 948 oldlibs optional libapache2-mod-md_2.4.62-1~deb12u2_arm64.deb
 0cc01ec2af313d123ec4c1d1844b38a1 1136 oldlibs optional libapache2-mod-proxy-uwsgi_2.4.62-1~deb12u2_arm64.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEvEwFZ4bqkVI+Rh6t+N4VxR6LZYEFAmcAMoMACgkQ+N4VxR6L
ZYEKUg/+P+78fgEk3cvLQfqjrM7WlsmaAi+lTOZm7PS39hcutzYCicYqVcuR+ZYe
TjG+sn63t1fPEtiXnNXi7ZBUIGZg/TbQXvH9P5NRPd0e5dkq5rKcqUYVCKADTh5H
IMUNOuQKIvICcjTkW6MbhEfC3cj+HWqDGgCOhhJDmFafPSdEpsQsG016FrbaSXF0
jjLNmHf7wr6qjRuO6B23aHeX1T5EwwX3TIGpE5Oi6MQ7MDF13/A+nChx5lailomV
6raB1y9l2vz8ERMAcZLI3/Kzr71KeUBliN2CNDrXV7IsSmR8jMag9TkuXanONjL0
k48T5NqQDLG2JKZ1jmM7BhJZxc3Kcqofsu30PZgMaHQRuyKce54icr0omHBcNGgG
ZsWMaAeILdtVu/SVV+UNduFse5HW2OLQtWM9LZEiS7uKvgIXcx/CwjTPslkM3HaT
7M9xvDakvk+6cLd8YoG2GDjZG7aK01uG6+haPZwdT4iep6Ev3z7V5pTHJpxP0DF2
U40ZsXz+KkZxaPpWb+JC5dBVRD2e+ifI6tYga2QELkFUXnFrT3eapmnejCFiKENT
c2kWklUIhb+9RjnwcHeRKZ8/83xoIAE2nnR4Y0P7p/6PugjOTJWQeMCNIckH8cM+
Pbo+uu9IGRsg/L04RW4XHVrvJcC28iv2vrsw6aOIin2czzel+l0=
=QMPg
-----END PGP SIGNATURE-----