-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 04 Oct 2024 15:21:08 +0000
Source: apache2
Binary: apache2 apache2-bin apache2-bin-dbgsym apache2-dev apache2-ssl-dev apache2-suexec-custom apache2-suexec-custom-dbgsym apache2-suexec-pristine apache2-suexec-pristine-dbgsym apache2-utils apache2-utils-dbgsym libapache2-mod-md libapache2-mod-proxy-uwsgi
Architecture: i386
Version: 2.4.62-1~deb12u2
Distribution: bookworm-security
Urgency: medium
Maintainer: i386 Build Daemon (x86-grnet-01) <buildd_amd64-x86-grnet-01@buildd.debian.org>
Changed-By: Bastien Roucariès <rouca@debian.org>
Description:
 apache2    - Apache HTTP Server
 apache2-bin - Apache HTTP Server (modules and other binary files)
 apache2-dev - Apache HTTP Server (development headers)
 apache2-ssl-dev - Apache HTTP Server (mod_ssl development headers)
 apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec
 apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec
 apache2-utils - Apache HTTP Server (utility programs for web servers)
 libapache2-mod-md - transitional package
 libapache2-mod-proxy-uwsgi - transitional package
Closes: 1079172 1079206
Changes:
 apache2 (2.4.62-1~deb12u2) bookworm-security; urgency=medium
 .
   * Fix CVE-2024-38474 regression:
     Better question mark tracking to avoid UnsafeAllow3F
     (Closes: #1079172)
   * Fix CVE-2024-39884 regression:
     Trust strings from configuration in mod_proxy
     (Closes: #1079206)
   * Add myself as maintainer with Yadd agreement
Checksums-Sha1:
 e9c76f2a49ec41099c40a355632ecf7833e89156 3250096 apache2-bin-dbgsym_2.4.62-1~deb12u2_i386.deb
 501d2fcc45b26d51d3d84962ed4328dc2a32b299 1452784 apache2-bin_2.4.62-1~deb12u2_i386.deb
 132a5fe2a7eb4f6140563b1eccbc466e535ac0b5 315564 apache2-dev_2.4.62-1~deb12u2_i386.deb
 840db9dcc82d5fb80b720378c8e89b27866e28d5 3136 apache2-ssl-dev_2.4.62-1~deb12u2_i386.deb
 09948c613daea20af6a595d2bb28abd603a7511f 11256 apache2-suexec-custom-dbgsym_2.4.62-1~deb12u2_i386.deb
 d85c5ddbe2b44f4283bb953d308fe843aeb3b26e 143180 apache2-suexec-custom_2.4.62-1~deb12u2_i386.deb
 6808384882120ba18ee8772a0cdd798186ef9062 10108 apache2-suexec-pristine-dbgsym_2.4.62-1~deb12u2_i386.deb
 b67137a1644246fcf5ebc43f7e257124208040f1 141652 apache2-suexec-pristine_2.4.62-1~deb12u2_i386.deb
 1ba08d6a0d2e9a16ead4c2b4a66e41d972f9b10e 107808 apache2-utils-dbgsym_2.4.62-1~deb12u2_i386.deb
 6a05f1eeda0a2441d7b484f3c9af7552f1e6f200 214148 apache2-utils_2.4.62-1~deb12u2_i386.deb
 0b76c53835603863ff533548f2cb83848ccd0b67 11577 apache2_2.4.62-1~deb12u2_i386-buildd.buildinfo
 b724e1a2352b4ce137f7d5e6e8ad3975e531a6a9 222748 apache2_2.4.62-1~deb12u2_i386.deb
 ea47834ad6832589239bcceabf86eb2bbd4ca76c 948 libapache2-mod-md_2.4.62-1~deb12u2_i386.deb
 c0be21f3b4f85f72bc35d33669ced2da9d664d76 1128 libapache2-mod-proxy-uwsgi_2.4.62-1~deb12u2_i386.deb
Checksums-Sha256:
 6e15767fc6dd0123e80b2d85a82de4a7169991077e5e418056bd956b29d6546e 3250096 apache2-bin-dbgsym_2.4.62-1~deb12u2_i386.deb
 00d49ca25acfea63fb5154612a8d8018f9567ecdd9c95329a3f03d2524661977 1452784 apache2-bin_2.4.62-1~deb12u2_i386.deb
 995e5b66d98519bae212343f0006688d407d32ddbcd21223b5d2f0f6b06c4df0 315564 apache2-dev_2.4.62-1~deb12u2_i386.deb
 4d6941c8fd34c187cf80baa7e9032dca410333faa699ae726cc2a357ece2ba73 3136 apache2-ssl-dev_2.4.62-1~deb12u2_i386.deb
 0b08c78f147e8d2751db7b1e8878c87cdb6cb38be481ce6287b29ffe93b506cd 11256 apache2-suexec-custom-dbgsym_2.4.62-1~deb12u2_i386.deb
 bcd732737db46b111b0d3b8588685b489065b3b97385f0ca491e442e41c09607 143180 apache2-suexec-custom_2.4.62-1~deb12u2_i386.deb
 bcc3a067d5b3bd8cf49767445111225e4773fb030f8000bafd1a585d6243be5f 10108 apache2-suexec-pristine-dbgsym_2.4.62-1~deb12u2_i386.deb
 e107deec821443413932488fa9f393e071cf6a6be1e9b12fa02f0c6067136a80 141652 apache2-suexec-pristine_2.4.62-1~deb12u2_i386.deb
 cbc97680887d7f9b4409790b17632f5616e761beaefd970cbe7eb2984ecb13b5 107808 apache2-utils-dbgsym_2.4.62-1~deb12u2_i386.deb
 840fd380e54e4ba001a62dbb477554d2a94b92c436aaf211de602095360dc4e4 214148 apache2-utils_2.4.62-1~deb12u2_i386.deb
 c3e80b0934a0500235349adbf5aa735cd4b19fce12a9400193f79e90cf3a0b6c 11577 apache2_2.4.62-1~deb12u2_i386-buildd.buildinfo
 ea04914e57411c485bb83b12dd52e11725437cc795501881772e98b361852be0 222748 apache2_2.4.62-1~deb12u2_i386.deb
 b95062181fb23de68772246f79f88804895734bc4ba5047a200b24c5110947b2 948 libapache2-mod-md_2.4.62-1~deb12u2_i386.deb
 5e62cca1d88b232a904cbcc55f85a2984e78db4642ca0f846b8a01411b761ea1 1128 libapache2-mod-proxy-uwsgi_2.4.62-1~deb12u2_i386.deb
Files:
 a50bd8eb0faac82e401981a60ba1c007 3250096 debug optional apache2-bin-dbgsym_2.4.62-1~deb12u2_i386.deb
 2c545ad0d1cdbaf8185076a617096a88 1452784 httpd optional apache2-bin_2.4.62-1~deb12u2_i386.deb
 bea33f776cc1e64917509b103586d488 315564 httpd optional apache2-dev_2.4.62-1~deb12u2_i386.deb
 862e26f7f5667a924aea8c106b990c60 3136 httpd optional apache2-ssl-dev_2.4.62-1~deb12u2_i386.deb
 ff210b0f3440bc53e6d333c26151b28f 11256 debug optional apache2-suexec-custom-dbgsym_2.4.62-1~deb12u2_i386.deb
 290bbefa9972047608159a3695f5b481 143180 httpd optional apache2-suexec-custom_2.4.62-1~deb12u2_i386.deb
 d1706054b03ffcd0cf34ce495c1a16ea 10108 debug optional apache2-suexec-pristine-dbgsym_2.4.62-1~deb12u2_i386.deb
 0a55c5cdd3b09fecfe8e4ee8ae95d0f1 141652 httpd optional apache2-suexec-pristine_2.4.62-1~deb12u2_i386.deb
 c5a7c37f41036f7972427d3a07cfcf7b 107808 debug optional apache2-utils-dbgsym_2.4.62-1~deb12u2_i386.deb
 7f921042fc03c4d5966bd9386fc9ea22 214148 httpd optional apache2-utils_2.4.62-1~deb12u2_i386.deb
 78aa0445a1e154d5b51dd5805b8a4025 11577 httpd optional apache2_2.4.62-1~deb12u2_i386-buildd.buildinfo
 25887172ec367062f3c39b14136a16f1 222748 httpd optional apache2_2.4.62-1~deb12u2_i386.deb
 0a9c4a3906e80fd0a89f86aa76be29bc 948 oldlibs optional libapache2-mod-md_2.4.62-1~deb12u2_i386.deb
 a9e765ec559d250908da166d50095f12 1128 oldlibs optional libapache2-mod-proxy-uwsgi_2.4.62-1~deb12u2_i386.deb

-----BEGIN PGP SIGNATURE-----
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=OYYC
-----END PGP SIGNATURE-----