Productes
Hola, som el fabricant líder a Europa en la indústria domèstica. T'interessa ampliar la teva oferta amb accessoris de cuina i productes de neteja d'alta qualitat que augmentaran les teves vendes? Oferim preus a l'engròs atractius, que us permeten aconseguir marges satisfactoris. Vols comprovar què et podem oferir? Atentamente Fabio Capo
Bug#1071102: apache2: apache 2.4.59 error of handling HTTPS 100 Continue POST CGI responces
Package: apache2 Version: 2.4.59-1~deb12u1 Severity: normal Dear Maintainer, apache 2.4.59 is send correct 100 Continue responce by HTTP, but not by HTTPS. Sample html POST form is in 100c.htm, sample bash script is in 100c.cgi *** Reporter, please consider answering these questions, where appropriate *** * What led up to the situation? * What exactly did you do (or not do) that was effective (or ineffective)? * What was the outcome of this action? * What outcome did you expect instead? *** End of the template - remove these template lines *** -- Package-specific info: -- System Information: Debian Release: 12.5 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 6.1.0-21-amd64 (SMP w/8 CPU threads; PREEMPT) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages apache2 depends on: ii apache2-bin2.4.59-1~deb12u1 ii apache2-data 2.4.59-1~deb12u1 ii apache2-utils 2.4.59-1~deb12u1 ii init-system-helpers1.65.2 ii lsb-base 11.6 ii media-types10.0.0 ii perl 5.36.0-7+deb12u1 ii procps 2:4.0.2-3 ii sysvinit-utils [lsb-base] 3.06-4 Versions of packages apache2 recommends: ii ssl-cert 1.1.2 Versions of packages apache2 suggests: pn apache2-doc pn apache2-suexec-pristine | apache2-suexec-custom ii lynx [www-browser] 2.9.0dev.12-1 Versions of packages apache2-bin depends on: ii libapr1 1.7.2-3 ii libaprutil1 1.6.3-1 ii libaprutil1-dbd-sqlite3 1.6.3-1 ii libaprutil1-ldap 1.6.3-1 ii libbrotli1 1.0.9-2+b6 ii libc62.36-9+deb12u7 ii libcrypt11:4.4.33-2 ii libcurl4 7.88.1-10+deb12u5 ii libjansson4 2.14-2 ii libldap-2.5-02.5.13+dfsg-5 ii liblua5.3-0 5.3.6-2 ii libnghttp2-141.52.0-1+deb12u1 ii libpcre2-8-0 10.42-1 ii libssl3 3.0.11-1~deb12u2 ii libxml2 2.9.14+dfsg-1.3~deb12u1 ii perl 5.36.0-7+deb12u1 ii zlib1g 1:1.2.13.dfsg-1 Versions of packages apache2-bin suggests: pn apache2-doc pn apache2-suexec-pristine | apache2-suexec-custom ii lynx [www-browser] 2.9.0dev.12-1 Versions of packages apache2 is related to: ii apache2 2.4.59-1~deb12u1 ii apache2-bin 2.4.59-1~deb12u1 -- Configuration Files: /etc/apache2/apache2.conf changed: ServerRoot "/etc/apache2" Mutex file:${APACHE_LOCK_DIR} default DefaultRuntimeDir ${APACHE_RUN_DIR} PidFile ${APACHE_PID_FILE} Timeout 300 KeepAlive On MaxKeepAliveRequests 1000 KeepAliveTimeout 5 User ${APACHE_RUN_USER} Group ${APACHE_RUN_GROUP} HostnameLookups Off ErrorLog /var/log/httpd/error.log LogLevel warn NoProxy "maasoftware.ru" "192.162.244.247/32" "192.162.244.248/32" "[2a13:3d80:0:6::d]/128" "[2a13:3d80:0:6::e]/128" IncludeOptional mods-enabled/*.load IncludeOptional mods-enabled/*.conf SetHandler application/x-httpd-php Include ports.conf AccessFileName .htaccess Require all denied LogFormat "%v:%p %a %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" vhost_combined LogFormat "%a %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" combined LogFormat "%a %l %u %t \"%r\" %>s %O" common LogFormat "%{Referer}i -> %U" referer LogFormat "%{User-agent}i" agent IncludeOptional conf-enabled/*.conf ServerAdmin supp...@maasoftware.ru ServerName maasoftware.ru:80 DocumentRoot "/var/www" Options FollowSymLinks AllowOverride None #Order deny,allow #Deny from all Require all denied # # Possible values for the Options directive are "None", "All", # or any combination of: # Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews # # Note that "MultiViews" must be named *explicitly* --- "Options All" # doesn't give it to you. # # The Options directive is both complicated and important. Please see # http://httpd.apache.org/docs/2.2/mod/core.html#options # for more information. # # # AllowOverride controls what directives may be placed in .htaccess files. # It can be "All", "None", or any combination of the keywords: # Options FileInfo AuthConfig Limit # # # Controls who can get stuff from this server. # # # Possible values for the Options directive are "None", "All", # or any combination of: # Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews # # Note that "MultiViews" must be named
Bug#1068412: marked as done (apache2: CVE-2024-27316 CVE-2024-24795 CVE-2023-38709)
Your message dated Sun, 05 May 2024 19:17:41 + with message-id and subject line Bug#1068412: fixed in apache2 2.4.59-1~deb11u1 has caused the Debian Bug report #1068412, regarding apache2: CVE-2024-27316 CVE-2024-24795 CVE-2023-38709 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1068412: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068412 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Source: apache2 X-Debbugs-CC: t...@security.debian.org Severity: grave Tags: security Hi, The following vulnerabilities were published for apache2. CVE-2024-27316[0]: https://www.kb.cert.org/vuls/id/421644 https://www.openwall.com/lists/oss-security/2024/04/04/4 CVE-2024-24795[1]: https://www.openwall.com/lists/oss-security/2024/04/04/5 CVE-2023-38709[2]: https://www.openwall.com/lists/oss-security/2024/04/04/3 If you fix the vulnerabilities please also make sure to include the CVE (Common Vulnerabilities & Exposures) ids in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2024-27316 https://www.cve.org/CVERecord?id=CVE-2024-27316 [1] https://security-tracker.debian.org/tracker/CVE-2024-24795 https://www.cve.org/CVERecord?id=CVE-2024-24795 [2] https://security-tracker.debian.org/tracker/CVE-2023-38709 https://www.cve.org/CVERecord?id=CVE-2023-38709 Please adjust the affected versions in the BTS as needed. --- End Message --- --- Begin Message --- Source: apache2 Source-Version: 2.4.59-1~deb11u1 Done: Yadd We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 1068...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Yadd (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 05 Apr 2024 16:08:04 +0400 Source: apache2 Binary: apache2 apache2-bin apache2-bin-dbgsym apache2-data apache2-dev apache2-doc apache2-ssl-dev apache2-suexec-custom apache2-suexec-custom-dbgsym apache2-suexec-pristine apache2-suexec-pristine-dbgsym apache2-utils apache2-utils-dbgsym libapache2-mod-md libapache2-mod-proxy-uwsgi Architecture: source amd64 all Version: 2.4.59-1~deb11u1 Distribution: bullseye-security Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Yadd Description: apache2- Apache HTTP Server apache2-bin - Apache HTTP Server (modules and other binary files) apache2-data - Apache HTTP Server (common files) apache2-dev - Apache HTTP Server (development headers) apache2-doc - Apache HTTP Server (on-site documentation) apache2-ssl-dev - Apache HTTP Server (mod_ssl development headers) apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec apache2-utils - Apache HTTP Server (utility programs for web servers) libapache2-mod-md - transitional package libapache2-mod-proxy-uwsgi - transitional package Closes: 1068412 Changes: apache2 (2.4.59-1~deb11u1) bullseye-security; urgency=medium . * New upstream version 2.4.58 (Closes: CVE-2023-31122, CVE-2023-43622, CVE-2023-45802) * Drop 2.4.56-regression patches * New upstream version 2.4.59 (Closes: #1068412 CVE-2024-27316 CVE-2024-24795 CVE-2023-38709) * Install NOTICE files * Update test framework * Refresh patches Checksums-Sha1: b0c553ee2f9076ab255d36f6f77a4155e8f5180d 3539 apache2_2.4.59-1~deb11u1.dsc 7a118baaed0f2131e482f93f5057038ca6c021be 9843252 apache2_2.4.59.orig.tar.gz 837cdf46898d962c4c05642745566249fc91e52b 833 apache2_2.4.59.orig.tar.gz.asc 8d3d9c0ec949faa3683bc395b0955584347323a6 895172 apache2_2.4.59-1~deb11u1.debian.tar.xz 651b4de4722fb3cf7331e0df7147738b7015bf89 3308712 apache2-bin-dbgsym_2.4.59-1~deb11u1_amd64.deb 46176b8ad83ca0e991d575f498d67871b2c2e1d6 1447660 apache2-bin_2.4.59-1~deb11u1_amd64.deb 2cd7eef5039ed029710efc9edb1c8b8d3822381b 160212 apache2-data_2.4.59-1~deb11u1_all.deb 7ae879f3f9fd07d0b0faff14e40af9d955e11a3d 374820 apache2-dev_2.4.59-1~deb11u1_amd64.deb
apache2_2.4.59-1~deb11u1_amd64.changes ACCEPTED into oldstable-proposed-updates
Thank you for your contribution to Debian. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 05 Apr 2024 16:08:04 +0400 Source: apache2 Binary: apache2 apache2-bin apache2-bin-dbgsym apache2-data apache2-dev apache2-doc apache2-ssl-dev apache2-suexec-custom apache2-suexec-custom-dbgsym apache2-suexec-pristine apache2-suexec-pristine-dbgsym apache2-utils apache2-utils-dbgsym libapache2-mod-md libapache2-mod-proxy-uwsgi Architecture: source amd64 all Version: 2.4.59-1~deb11u1 Distribution: bullseye-security Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Yadd Description: apache2- Apache HTTP Server apache2-bin - Apache HTTP Server (modules and other binary files) apache2-data - Apache HTTP Server (common files) apache2-dev - Apache HTTP Server (development headers) apache2-doc - Apache HTTP Server (on-site documentation) apache2-ssl-dev - Apache HTTP Server (mod_ssl development headers) apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec apache2-utils - Apache HTTP Server (utility programs for web servers) libapache2-mod-md - transitional package libapache2-mod-proxy-uwsgi - transitional package Closes: 1068412 Changes: apache2 (2.4.59-1~deb11u1) bullseye-security; urgency=medium . * New upstream version 2.4.58 (Closes: CVE-2023-31122, CVE-2023-43622, CVE-2023-45802) * Drop 2.4.56-regression patches * New upstream version 2.4.59 (Closes: #1068412 CVE-2024-27316 CVE-2024-24795 CVE-2023-38709) * Install NOTICE files * Update test framework * Refresh patches Checksums-Sha1: b0c553ee2f9076ab255d36f6f77a4155e8f5180d 3539 apache2_2.4.59-1~deb11u1.dsc 7a118baaed0f2131e482f93f5057038ca6c021be 9843252 apache2_2.4.59.orig.tar.gz 837cdf46898d962c4c05642745566249fc91e52b 833 apache2_2.4.59.orig.tar.gz.asc 8d3d9c0ec949faa3683bc395b0955584347323a6 895172 apache2_2.4.59-1~deb11u1.debian.tar.xz 651b4de4722fb3cf7331e0df7147738b7015bf89 3308712 apache2-bin-dbgsym_2.4.59-1~deb11u1_amd64.deb 46176b8ad83ca0e991d575f498d67871b2c2e1d6 1447660 apache2-bin_2.4.59-1~deb11u1_amd64.deb 2cd7eef5039ed029710efc9edb1c8b8d3822381b 160212 apache2-data_2.4.59-1~deb11u1_all.deb 7ae879f3f9fd07d0b0faff14e40af9d955e11a3d 374820 apache2-dev_2.4.59-1~deb11u1_amd64.deb a74bbd0f3c77d93b2933e9a7ca2c4daef09767ae 4085344 apache2-doc_2.4.59-1~deb11u1_all.deb 6b04306349ed3dab9a9baae0bb6ecc733d87101e 3148 apache2-ssl-dev_2.4.59-1~deb11u1_amd64.deb 592c2db4a61122edf71651806dab471f3c4fd523 12348 apache2-suexec-custom-dbgsym_2.4.59-1~deb11u1_amd64.deb c8d55c5c2d152295a8f052afb4687b4c608010b6 203964 apache2-suexec-custom_2.4.59-1~deb11u1_amd64.deb f15301bcdfa07e497b13d2e2b63f72b8b1b5e8d1 11140 apache2-suexec-pristine-dbgsym_2.4.59-1~deb11u1_amd64.deb 32bca066d4c74d879a47c9695eba65305ce40beb 202404 apache2-suexec-pristine_2.4.59-1~deb11u1_amd64.deb c96298d3153025ee40865dc3114cde0cdc768cd2 115748 apache2-utils-dbgsym_2.4.59-1~deb11u1_amd64.deb 9d40390c27ffcfb4291074e8da52e85d7c1542a4 271100 apache2-utils_2.4.59-1~deb11u1_amd64.deb b6c21fd9d72ce97e5bed90e742367bd956752d4e 12690 apache2_2.4.59-1~deb11u1_amd64.buildinfo cdb3c0c6f59f347ab1a5a05759bb0da7a886a1fa 283732 apache2_2.4.59-1~deb11u1_amd64.deb dba70fb6f094395bf44685af6de02efbb9112f4b 956 libapache2-mod-md_2.4.59-1~deb11u1_amd64.deb 93d5d7eda14453906d757151f463cae78d545069 1136 libapache2-mod-proxy-uwsgi_2.4.59-1~deb11u1_amd64.deb Checksums-Sha256: 778f49efe1aab7caa9446c4027664cbc77c9b54d4f11e69fc1b1e3f4725e8b77 3539 apache2_2.4.59-1~deb11u1.dsc e4ec4ce12c6c8f5a794dc2263d126cb1d6ef667f034c4678ec945d61286e8b0f 9843252 apache2_2.4.59.orig.tar.gz 0ad3f670b944ebf08c81544bc82fae9496e88d96840cd0612d8cdeaa073eb06d 833 apache2_2.4.59.orig.tar.gz.asc 04df061eedac33928a93afe996a9839e83a5daddc5ee53088a0bb37090ed9331 895172 apache2_2.4.59-1~deb11u1.debian.tar.xz fde3f605f2591fc8ec3ef50cc3fa13e318060fe51f5fa5253654889a48989c36 3308712 apache2-bin-dbgsym_2.4.59-1~deb11u1_amd64.deb a8b9c67f1f198511d1769ea1d181950c329b82110812515fcc126da12d78ac55 1447660 apache2-bin_2.4.59-1~deb11u1_amd64.deb 701dd3e0bae253b68d9ee12165c67557fc9b9bd485c7d6306410754dd5606ddc 160212 apache2-data_2.4.59-1~deb11u1_all.deb 81082a7e4bb4a469dba94655c5a28cfa215b1aeb189244066904be9eb3670f4b 374820 apache2-dev_2.4.59-1~deb11u1_amd64.deb 364ea71d4666f290d80692d9104e1c021380e677821b15bcdb79888be017261f 4085344 apache2-doc_2.4.59-1~deb11u1_all.deb 49a7fd50c283a3a039e59ab3c14702ecb2cff94296ffa9d3bded6ec6cca7c97d 3148 apache2-ssl-dev_2.4.59-1~deb11u1_amd64.deb c31f146feaa81ae84ebeba6509ebf1d9cd55f9c2e8b6a5b1f5d9a5837f0ee5dc 12348 apache2-suexec-custom-dbgsym_2.4.59-1~deb11u1_amd64.deb 6c646b06d6187df71e36b5400a7fac1df2e578219e1856e57cd3038a7c65eefb 203964 apache2-suexec-custom_2.4.59-1~deb11u1_amd64.deb c75bcdb70660d6713671ce437f18205c35099b754b608d770c3b780e7c3625df 11140
Bug#1068412: marked as done (apache2: CVE-2024-27316 CVE-2024-24795 CVE-2023-38709)
Your message dated Sun, 05 May 2024 18:47:10 + with message-id and subject line Bug#1068412: fixed in apache2 2.4.59-1~deb12u1 has caused the Debian Bug report #1068412, regarding apache2: CVE-2024-27316 CVE-2024-24795 CVE-2023-38709 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1068412: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068412 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Source: apache2 X-Debbugs-CC: t...@security.debian.org Severity: grave Tags: security Hi, The following vulnerabilities were published for apache2. CVE-2024-27316[0]: https://www.kb.cert.org/vuls/id/421644 https://www.openwall.com/lists/oss-security/2024/04/04/4 CVE-2024-24795[1]: https://www.openwall.com/lists/oss-security/2024/04/04/5 CVE-2023-38709[2]: https://www.openwall.com/lists/oss-security/2024/04/04/3 If you fix the vulnerabilities please also make sure to include the CVE (Common Vulnerabilities & Exposures) ids in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2024-27316 https://www.cve.org/CVERecord?id=CVE-2024-27316 [1] https://security-tracker.debian.org/tracker/CVE-2024-24795 https://www.cve.org/CVERecord?id=CVE-2024-24795 [2] https://security-tracker.debian.org/tracker/CVE-2023-38709 https://www.cve.org/CVERecord?id=CVE-2023-38709 Please adjust the affected versions in the BTS as needed. --- End Message --- --- Begin Message --- Source: apache2 Source-Version: 2.4.59-1~deb12u1 Done: Yadd We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 1068...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Yadd (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 05 Apr 2024 16:02:26 +0400 Source: apache2 Binary: apache2 apache2-bin apache2-bin-dbgsym apache2-data apache2-dev apache2-doc apache2-ssl-dev apache2-suexec-custom apache2-suexec-custom-dbgsym apache2-suexec-pristine apache2-suexec-pristine-dbgsym apache2-utils apache2-utils-dbgsym libapache2-mod-md libapache2-mod-proxy-uwsgi Architecture: source amd64 all Version: 2.4.59-1~deb12u1 Distribution: bookworm-security Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Yadd Description: apache2- Apache HTTP Server apache2-bin - Apache HTTP Server (modules and other binary files) apache2-data - Apache HTTP Server (common files) apache2-dev - Apache HTTP Server (development headers) apache2-doc - Apache HTTP Server (on-site documentation) apache2-ssl-dev - Apache HTTP Server (mod_ssl development headers) apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec apache2-utils - Apache HTTP Server (utility programs for web servers) libapache2-mod-md - transitional package libapache2-mod-proxy-uwsgi - transitional package Closes: 1068412 Changes: apache2 (2.4.59-1~deb12u1) bookworm-security; urgency=medium . * New upstream version 2.4.58 (Closes: CVE-2023-31122, CVE-2023-43622, CVE-2023-45802) * New upstream version 2.4.59 (Closes: #1068412 CVE-2024-27316 CVE-2024-24795 CVE-2023-38709) * Refresh patches * Update test framework Checksums-Sha1: 0ff1bbe49e7266429e3ea5f8df651776b961902e 3520 apache2_2.4.59-1~deb12u1.dsc 7a118baaed0f2131e482f93f5057038ca6c021be 9843252 apache2_2.4.59.orig.tar.gz 837cdf46898d962c4c05642745566249fc91e52b 833 apache2_2.4.59.orig.tar.gz.asc 59cd2b140a3e313345acb675f4792a63ecad7403 820804 apache2_2.4.59-1~deb12u1.debian.tar.xz d854f4e07f350cf3b067caf1ed78edbde3c76031 3734744 apache2-bin-dbgsym_2.4.59-1~deb12u1_amd64.deb f6a264c3f91353e88233eaec66f997d86be150ad 1379912 apache2-bin_2.4.59-1~deb12u1_amd64.deb 16d3d3d8aa25fea0c7755efc8b9685e70cc70b21 160264 apache2-data_2.4.59-1~deb12u1_all.deb 5b643339c2a9ec14872873e41772a91f73031c3d 312108 apache2-dev_2.4.59-1~deb12u1_amd64.deb 4ec40752b1f22964802957e6a59187ec7dce83ea 4022328
apache2_2.4.59-1~deb12u1_amd64.changes ACCEPTED into proposed-updates
Thank you for your contribution to Debian. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 05 Apr 2024 16:02:26 +0400 Source: apache2 Binary: apache2 apache2-bin apache2-bin-dbgsym apache2-data apache2-dev apache2-doc apache2-ssl-dev apache2-suexec-custom apache2-suexec-custom-dbgsym apache2-suexec-pristine apache2-suexec-pristine-dbgsym apache2-utils apache2-utils-dbgsym libapache2-mod-md libapache2-mod-proxy-uwsgi Architecture: source amd64 all Version: 2.4.59-1~deb12u1 Distribution: bookworm-security Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Yadd Description: apache2- Apache HTTP Server apache2-bin - Apache HTTP Server (modules and other binary files) apache2-data - Apache HTTP Server (common files) apache2-dev - Apache HTTP Server (development headers) apache2-doc - Apache HTTP Server (on-site documentation) apache2-ssl-dev - Apache HTTP Server (mod_ssl development headers) apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec apache2-utils - Apache HTTP Server (utility programs for web servers) libapache2-mod-md - transitional package libapache2-mod-proxy-uwsgi - transitional package Closes: 1068412 Changes: apache2 (2.4.59-1~deb12u1) bookworm-security; urgency=medium . * New upstream version 2.4.58 (Closes: CVE-2023-31122, CVE-2023-43622, CVE-2023-45802) * New upstream version 2.4.59 (Closes: #1068412 CVE-2024-27316 CVE-2024-24795 CVE-2023-38709) * Refresh patches * Update test framework Checksums-Sha1: 0ff1bbe49e7266429e3ea5f8df651776b961902e 3520 apache2_2.4.59-1~deb12u1.dsc 7a118baaed0f2131e482f93f5057038ca6c021be 9843252 apache2_2.4.59.orig.tar.gz 837cdf46898d962c4c05642745566249fc91e52b 833 apache2_2.4.59.orig.tar.gz.asc 59cd2b140a3e313345acb675f4792a63ecad7403 820804 apache2_2.4.59-1~deb12u1.debian.tar.xz d854f4e07f350cf3b067caf1ed78edbde3c76031 3734744 apache2-bin-dbgsym_2.4.59-1~deb12u1_amd64.deb f6a264c3f91353e88233eaec66f997d86be150ad 1379912 apache2-bin_2.4.59-1~deb12u1_amd64.deb 16d3d3d8aa25fea0c7755efc8b9685e70cc70b21 160264 apache2-data_2.4.59-1~deb12u1_all.deb 5b643339c2a9ec14872873e41772a91f73031c3d 312108 apache2-dev_2.4.59-1~deb12u1_amd64.deb 4ec40752b1f22964802957e6a59187ec7dce83ea 4022328 apache2-doc_2.4.59-1~deb12u1_all.deb b61b2467c5d0e89b06d59ba90bb413fa700f5723 3140 apache2-ssl-dev_2.4.59-1~deb12u1_amd64.deb 0fc18949fd895d479f1f033684cfcfeb5385ada9 12392 apache2-suexec-custom-dbgsym_2.4.59-1~deb12u1_amd64.deb 9fbc0a9723d878098ad3bb0a713c18e566f3a55f 140492 apache2-suexec-custom_2.4.59-1~deb12u1_amd64.deb 58df2e8fa9eaa6086f8af5c5a6952a696143e78f 11204 apache2-suexec-pristine-dbgsym_2.4.59-1~deb12u1_amd64.deb 862fdbcbe729237447cbf794dbc93fa4ae332879 138932 apache2-suexec-pristine_2.4.59-1~deb12u1_amd64.deb af62a8fc5d4ed2048c0c11f12593bdcf9c9acb71 115544 apache2-utils-dbgsym_2.4.59-1~deb12u1_amd64.deb a1df0a4b290f1e84ebad028d4c1c9cadf69f6615 207236 apache2-utils_2.4.59-1~deb12u1_amd64.deb a7a7ff8ced36acd0d5e20895158d4fa5158c6613 12377 apache2_2.4.59-1~deb12u1_amd64.buildinfo 86fd09720da9d0a8496de23c40260c8e363d89c9 219972 apache2_2.4.59-1~deb12u1_amd64.deb 12f47d1cfc23d935ec15347ec919aa43c1441b74 956 libapache2-mod-md_2.4.59-1~deb12u1_amd64.deb 03b37e6a4d807ee07c8fdec6151f0d681f64ea48 1136 libapache2-mod-proxy-uwsgi_2.4.59-1~deb12u1_amd64.deb Checksums-Sha256: 7eb35073c03aac9d25b20ca453dd6627ec5089e7e7acdf292c874d3dd283df35 3520 apache2_2.4.59-1~deb12u1.dsc e4ec4ce12c6c8f5a794dc2263d126cb1d6ef667f034c4678ec945d61286e8b0f 9843252 apache2_2.4.59.orig.tar.gz 0ad3f670b944ebf08c81544bc82fae9496e88d96840cd0612d8cdeaa073eb06d 833 apache2_2.4.59.orig.tar.gz.asc 89968e0d151fc1db6f826cff0985be8e8fad14516019719fe506e1d1c067ebdd 820804 apache2_2.4.59-1~deb12u1.debian.tar.xz 07a2a7ebf64eb2765e0f9a74832b8c2a3d2ad82fea12232c03e76a2303c72f7d 3734744 apache2-bin-dbgsym_2.4.59-1~deb12u1_amd64.deb f1d72c8faa521ac1cbd166d5fa0deff7066949519150e3ba42d04941507d0bd7 1379912 apache2-bin_2.4.59-1~deb12u1_amd64.deb a54966f747c61bff59d1197dd72c582436dd38696d054f5ec38f4ff7d2ae41f9 160264 apache2-data_2.4.59-1~deb12u1_all.deb 41e7c068796b5dfbaa6985483171c330655e530b3507b63d7a00b5646513b463 312108 apache2-dev_2.4.59-1~deb12u1_amd64.deb 8c6ab968ea42bf4820273329cc3972dfc097ad9eab47013e941de7effa7acc3c 4022328 apache2-doc_2.4.59-1~deb12u1_all.deb f294826ac5db7123a667b3d7048241ffbcb94608ae9658d7f5e611decbcd65ba 3140 apache2-ssl-dev_2.4.59-1~deb12u1_amd64.deb 08bf4c363375d78f6c6a2d731e5d6f6f1537aba40f1bc0eb99e820b8c71ea362 12392 apache2-suexec-custom-dbgsym_2.4.59-1~deb12u1_amd64.deb 631d97f2123c598f4ac9acb0951dcf518b9d513ed01b372a844a512afd0bd0ac 140492 apache2-suexec-custom_2.4.59-1~deb12u1_amd64.deb fea71c46f48fad02ed5ad060589bcc2cf11fd95ef975e6b0fad11053bbdccfc0 11204 apache2-suexec-pristine-dbgsym_2.4.59-1~deb12u1_amd64.deb
Processed: affects 1069748
Processing commands for cont...@bugs.debian.org: > affects 1069748 + release.debian.org,security.debian.org Bug #1069748 [apache2] mod_ssl: warning about compilation against OpenSSL 3.0.13 instead of 3.0.11 on bookworm Added indication that 1069748 affects release.debian.org and security.debian.org > thanks Stopping processing here. Please contact me if you need assistance. -- 1069748: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1069748 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Processing of apache2_2.4.59-2_sourceonly.changes
apache2_2.4.59-2_sourceonly.changes uploaded successfully to localhost along with the files: apache2_2.4.59-2.dsc apache2_2.4.59-2.debian.tar.xz Greetings, Your Debian queue daemon (running on host usper.debian.org)
apache2_2.4.59-2_sourceonly.changes ACCEPTED into unstable
Thank you for your contribution to Debian. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 29 Apr 2024 21:55:28 + Source: apache2 Architecture: source Version: 2.4.59-2 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Bastien Roucariès Changes: apache2 (2.4.59-2) unstable; urgency=medium . * Breaks against fossil due to CVE-2024-24795 follows up Checksums-Sha1: bf8d373078f7b5cf034aedda8a5b6997189af458 3334 apache2_2.4.59-2.dsc 8c6da99bd38d61ee9c9ae3f49d2b64b7ca61697f 820572 apache2_2.4.59-2.debian.tar.xz Checksums-Sha256: 65a75220c22025d696d1550b81ce8146f5fac3b9ca554187ea793d50986d75c6 3334 apache2_2.4.59-2.dsc f77aceeb1a88968c0709c3c852dfa492e6c05dc18b7c18b33788a551bb9f3264 820572 apache2_2.4.59-2.debian.tar.xz Files: f1ba6185cfcc0c62ba9009b6c41b0061 3334 httpd optional apache2_2.4.59-2.dsc 40a00c40ebc8626f4c9a4cd0a2ac1834 820572 httpd optional apache2_2.4.59-2.debian.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEAN/li4tVV3nRAF7J9tdMp8mZ7ukFAmYwl6wACgkQ9tdMp8mZ 7ulS5Q/9FS+u+K8MYvJbalK4PiU6IryelP0pcgUfC1Qk1u2/i3ru0EfpqjoOFaR6 SkOKxMwb3UGzy20MUSiAtiUtYmpN/ik4M8U8zOpebUXISR+1/+b2nuEIYgSCOh8J NI12kfgjnsiVSTd8+tt1xkJ6Yc/EKDAYs+GJIuLg5JGvnBWXgN8DSBDWi8k6fgS0 bRUu0ytSSec7WeZf76HhXdBO8DK9M8TzLOA0chdXsFfprSgQLONyObsyIUMpHU1o GQhkc3K0vz/g9ptN13wkee8trSNlcCZXMpAZPxgTmou4cXUvW0To2ncGsPYMXQbU uOfUJUhwSjbarxhX/wDu5/Wwr6x3/85AIL8dd6a3a41HVCKf98v3RHVjTracKqUE H3++urv7eSej7xWP0yVfpHmPsDxnNF276s9ySkmqDyfrxcRY8KsyOTgs7uaeygQ5 jAdNZAjHw1/u8g8JLAuPY+xGHLQF42cz4tWblOdYkMrYhlSx1RjNhMb/T7mrarT2 4Kcyok2f953/9zoF01mSinZhwC9lOCCho92jM0FIQz/WXoqZ3SOuX4hL/jojULPD M/K3NQua8rKg+hkmeEO0Md+N37h95/k9GpSWyUurINayPv8mJ55nr1CnNaE8dKFJ hoec2Sak5LHIsGFqgw9GM6OZT5zaCcedqF5kFVGx6JH0ZUTNp8s= =unl2 -END PGP SIGNATURE- pgpb7NeVVdqrm.pgp Description: PGP signature
Bug#1069907: dh_apache2: please output reproducible module package pre/post scripts.
Package: apache2-dev Severity: wishlist User: reproducible-bui...@lists.alioth.debian.org Usertags: randomness Control: affects -1 mod-mono Dear Maintainer, I'm an occasional volunteer contributor to the Reproducible Builds[1] project, and noticed recently that an Apache webserver module, mod-mono, that depends[2] on the dh_apache2 debhelper utility from apache2-dev at build-time, failed an automated Debian reproducibility test[3]. The problem appears to be related to the substitution of a NAMES variable that appears in the templated pre/post scripts evaluated by dh_apache2; the templates[4][5][6] are found in the 'apache2' source package. I don't yet know exactly how the non-deterministic ordering of entries in the NAMES variable occurs; however the replacement parameters[7] in the dh_apache2.in script seem relevant, and tracing the creation of those may help. Producing a value for the NAMES variable deterministically should I believe allow the mod-mono package -- and any other Debian Apache module packages that contain more than one named module -- to build reproducibily, in turn enabling consumers of Debian to reliably rebuild a bit-for-bit identical .deb package from source. Regards, James [1] - https://reproducible-builds.org/ [2] - https://sources.debian.org/src/mod-mono/3.8-3/debian/control/#L9 [3] - https://tests.reproducible-builds.org/debian/rb-pkg/trixie/amd64/diffoscope-results/mod-mono.html [4] - https://sources.debian.org/src/apache2/2.4.58-1/debian/debhelper/postinst-apache2/ [5] - https://sources.debian.org/src/apache2/2.4.58-1/debian/debhelper/postrm-apache2/ [6] - https://sources.debian.org/src/apache2/2.4.58-1/debian/debhelper/prerm-apache2/ [7] - https://sources.debian.org/src/apache2/2.4.58-1/debian/debhelper/dh_apache2.in/#L551
Processed: dh_apache2: please output reproducible module package pre/post scripts.
Processing control commands: > affects -1 mod-mono Bug #1069907 [apache2-dev] dh_apache2: please output reproducible module package pre/post scripts. Added indication that 1069907 affects mod-mono -- 1069907: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1069907 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#1069748: mod_ssl: warning about compilation against OpenSSL 3.0.13 instead of 3.0.11 on bookworm
Package: apache2 Version: 2.4.59-1~deb12u1 Severity: normal X-Debbugs-Cc: t...@security.debian.org Dear Maintainer, I noticed that after a recent security update of apache2 on bookworm (2.4.57-2 -> 2.4.59-1~deb12u1), the following warning started to appear in the error.log on every apache2 restart: [ssl:warn] [pid 1144573:tid 281472850739232] AH01882: Init: this version of mod_ssl was compiled against a newer library (OpenSSL 3.0.13 30 Jan 2024 (OpenSSL 3.0.11 19 Sep 2023), version currently loaded is 0x30B0) - may result in undefined or erroneous behavior [mpm_event:notice] [pid 1144575:tid 281472850739232] AH00489: Apache/2.4.59 (Debian) mod_fcgid/2.3.9 OpenSSL/3.0.11 configured -- resuming normal operations Comparing package versions on my system with those listed on packages.debian.org for bookworm it seems I'm up to date with apache2 and libssl3 (3.0.11-1~deb12u2) packages. Apart from this warning I haven't noticed any problems so far. Best regards Tomaž -- Package-specific info: -- System Information: Debian Release: 12.5 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable') Architecture: arm64 (aarch64) Kernel: Linux 6.1.0-20-arm64 (SMP w/2 CPU threads) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) Versions of packages apache2 depends on: ii apache2-bin2.4.59-1~deb12u1 ii apache2-data 2.4.59-1~deb12u1 ii apache2-utils 2.4.59-1~deb12u1 ii init-system-helpers1.65.2 ii media-types10.0.0 ii perl 5.36.0-7+deb12u1 ii procps 2:4.0.2-3 ii sysvinit-utils [lsb-base] 3.06-4 Versions of packages apache2 recommends: pn ssl-cert Versions of packages apache2 suggests: pn apache2-doc pn apache2-suexec-pristine | apache2-suexec-custom pn www-browser Versions of packages apache2-bin depends on: ii libapr1 1.7.2-3 ii libaprutil1 1.6.3-1 ii libaprutil1-dbd-sqlite3 1.6.3-1 ii libaprutil1-ldap 1.6.3-1 ii libbrotli1 1.0.9-2+b6 ii libc62.36-9+deb12u6 ii libcrypt11:4.4.33-2 ii libcurl4 7.88.1-10+deb12u5 ii libjansson4 2.14-2 ii libldap-2.5-02.5.13+dfsg-5 ii liblua5.3-0 5.3.6-2 ii libnghttp2-141.52.0-1+deb12u1 ii libpcre2-8-0 10.42-1 ii libssl3 3.0.11-1~deb12u2 ii libxml2 2.9.14+dfsg-1.3~deb12u1 ii perl 5.36.0-7+deb12u1 ii zlib1g 1:1.2.13.dfsg-1 Versions of packages apache2-bin suggests: pn apache2-doc pn apache2-suexec-pristine | apache2-suexec-custom pn www-browser Versions of packages apache2 is related to: ii apache2 2.4.59-1~deb12u1 ii apache2-bin 2.4.59-1~deb12u1 -- Configuration Files: /etc/apache2/apache2.conf changed [not included] /etc/apache2/conf-available/security.conf changed [not included] /etc/apache2/sites-available/000-default.conf changed [not included] -- no debconf information
Bullseyeupdate from 2.4.56-1~deb11u2 to 2.4.59-1~deb11u1
Good morning, we installed this update last week on our reverseproxys for our customers. After the updates were installed customer claims that some of their (really really old) clients (Win7, Win8.1 with IE11) cannot connect to the reverseproxy site with https anymore. After downgrading apache2 back to 2.4.56 they were able to connect again. We checked the https configuration (strict TLS v1.2) and found that configured ciphers weren't allowed anymore. Before the update the ciphers looked like: Supported Server Cipher(s): Preferred TLSv1.3 256 bits TLS_AES_256_GCM_SHA384Curve 25519 DHE 253 Accepted TLSv1.3 256 bits TLS_CHACHA20_POLY1305_SHA256 Curve 25519 DHE 253 Accepted TLSv1.3 128 bits TLS_AES_128_GCM_SHA256Curve 25519 DHE 253 Preferred TLSv1.2 256 bits ECDHE-RSA-AES256-GCM-SHA384 Curve 25519 DHE 253 Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-GCM-SHA256 Curve 25519 DHE 253 Accepted TLSv1.2 256 bits DHE-RSA-AES256-GCM-SHA384 DHE 3072 bits Accepted TLSv1.2 128 bits DHE-RSA-AES128-GCM-SHA256 DHE 3072 bits After the update: Supported Server Cipher(s): Preferred TLSv1.3 256 bits TLS_AES_256_GCM_SHA384Curve 25519 DHE 253 Accepted TLSv1.3 256 bits TLS_CHACHA20_POLY1305_SHA256 Curve 25519 DHE 253 Accepted TLSv1.3 128 bits TLS_AES_128_GCM_SHA256Curve 25519 DHE 253 Preferred TLSv1.2 256 bits ECDHE-RSA-AES256-GCM-SHA384 Curve 25519 DHE 253 Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-GCM-SHA256 Curve 25519 DHE 253 So you can see the DHE-Ciphers were missing. After searching the internet I found https://bz.apache.org/bugzilla/show_bug.cgi?id=68863. I didn't try the patch but the DH-tipp in the certificate file. After including the DH in the certificate the problem was solved. I think that this patch should be imported in the Debian package? Shall I open a bug report? I didn't find anything in the debian-apache bug-database. Kind regards, Andreas Schulz Enterprise & Cyber Security Managed Security 2 Services DACH - Managed Cloud Services Fujitsu Services GmbH Konrad-Zuse-Str. 16, 74172, Neckarsulm, Germany W https://www.fujitsu-services.com Geschäftsführung: Robert Roiger, Michael Pries, Marcos Sanchez Urstadt, Lars Moscherosch Eingetragener Sitz: München, Deutschland Registergericht: Amtsgericht München Reg.- Nr. HRB 219577 Weitere Informationen: https://fujitsu-services.com/impressum Datenschutz-Hinweise: https://fujitsu-services.com/datenschutz
apache2_2.4.59-1~deb12u1_amd64.changes ACCEPTED into proposed-updates->stable-new
Thank you for your contribution to Debian. Mapping stable-security to proposed-updates. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 05 Apr 2024 16:02:26 +0400 Source: apache2 Binary: apache2 apache2-bin apache2-bin-dbgsym apache2-data apache2-dev apache2-doc apache2-ssl-dev apache2-suexec-custom apache2-suexec-custom-dbgsym apache2-suexec-pristine apache2-suexec-pristine-dbgsym apache2-utils apache2-utils-dbgsym libapache2-mod-md libapache2-mod-proxy-uwsgi Architecture: source amd64 all Version: 2.4.59-1~deb12u1 Distribution: bookworm-security Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Yadd Description: apache2- Apache HTTP Server apache2-bin - Apache HTTP Server (modules and other binary files) apache2-data - Apache HTTP Server (common files) apache2-dev - Apache HTTP Server (development headers) apache2-doc - Apache HTTP Server (on-site documentation) apache2-ssl-dev - Apache HTTP Server (mod_ssl development headers) apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec apache2-utils - Apache HTTP Server (utility programs for web servers) libapache2-mod-md - transitional package libapache2-mod-proxy-uwsgi - transitional package Closes: 1068412 Changes: apache2 (2.4.59-1~deb12u1) bookworm-security; urgency=medium . * New upstream version 2.4.58 (Closes: CVE-2023-31122, CVE-2023-43622, CVE-2023-45802) * New upstream version 2.4.59 (Closes: #1068412 CVE-2024-27316 CVE-2024-24795 CVE-2023-38709) * Refresh patches * Update test framework Checksums-Sha1: 0ff1bbe49e7266429e3ea5f8df651776b961902e 3520 apache2_2.4.59-1~deb12u1.dsc 7a118baaed0f2131e482f93f5057038ca6c021be 9843252 apache2_2.4.59.orig.tar.gz 837cdf46898d962c4c05642745566249fc91e52b 833 apache2_2.4.59.orig.tar.gz.asc 59cd2b140a3e313345acb675f4792a63ecad7403 820804 apache2_2.4.59-1~deb12u1.debian.tar.xz d854f4e07f350cf3b067caf1ed78edbde3c76031 3734744 apache2-bin-dbgsym_2.4.59-1~deb12u1_amd64.deb f6a264c3f91353e88233eaec66f997d86be150ad 1379912 apache2-bin_2.4.59-1~deb12u1_amd64.deb 16d3d3d8aa25fea0c7755efc8b9685e70cc70b21 160264 apache2-data_2.4.59-1~deb12u1_all.deb 5b643339c2a9ec14872873e41772a91f73031c3d 312108 apache2-dev_2.4.59-1~deb12u1_amd64.deb 4ec40752b1f22964802957e6a59187ec7dce83ea 4022328 apache2-doc_2.4.59-1~deb12u1_all.deb b61b2467c5d0e89b06d59ba90bb413fa700f5723 3140 apache2-ssl-dev_2.4.59-1~deb12u1_amd64.deb 0fc18949fd895d479f1f033684cfcfeb5385ada9 12392 apache2-suexec-custom-dbgsym_2.4.59-1~deb12u1_amd64.deb 9fbc0a9723d878098ad3bb0a713c18e566f3a55f 140492 apache2-suexec-custom_2.4.59-1~deb12u1_amd64.deb 58df2e8fa9eaa6086f8af5c5a6952a696143e78f 11204 apache2-suexec-pristine-dbgsym_2.4.59-1~deb12u1_amd64.deb 862fdbcbe729237447cbf794dbc93fa4ae332879 138932 apache2-suexec-pristine_2.4.59-1~deb12u1_amd64.deb af62a8fc5d4ed2048c0c11f12593bdcf9c9acb71 115544 apache2-utils-dbgsym_2.4.59-1~deb12u1_amd64.deb a1df0a4b290f1e84ebad028d4c1c9cadf69f6615 207236 apache2-utils_2.4.59-1~deb12u1_amd64.deb a7a7ff8ced36acd0d5e20895158d4fa5158c6613 12377 apache2_2.4.59-1~deb12u1_amd64.buildinfo 86fd09720da9d0a8496de23c40260c8e363d89c9 219972 apache2_2.4.59-1~deb12u1_amd64.deb 12f47d1cfc23d935ec15347ec919aa43c1441b74 956 libapache2-mod-md_2.4.59-1~deb12u1_amd64.deb 03b37e6a4d807ee07c8fdec6151f0d681f64ea48 1136 libapache2-mod-proxy-uwsgi_2.4.59-1~deb12u1_amd64.deb Checksums-Sha256: 7eb35073c03aac9d25b20ca453dd6627ec5089e7e7acdf292c874d3dd283df35 3520 apache2_2.4.59-1~deb12u1.dsc e4ec4ce12c6c8f5a794dc2263d126cb1d6ef667f034c4678ec945d61286e8b0f 9843252 apache2_2.4.59.orig.tar.gz 0ad3f670b944ebf08c81544bc82fae9496e88d96840cd0612d8cdeaa073eb06d 833 apache2_2.4.59.orig.tar.gz.asc 89968e0d151fc1db6f826cff0985be8e8fad14516019719fe506e1d1c067ebdd 820804 apache2_2.4.59-1~deb12u1.debian.tar.xz 07a2a7ebf64eb2765e0f9a74832b8c2a3d2ad82fea12232c03e76a2303c72f7d 3734744 apache2-bin-dbgsym_2.4.59-1~deb12u1_amd64.deb f1d72c8faa521ac1cbd166d5fa0deff7066949519150e3ba42d04941507d0bd7 1379912 apache2-bin_2.4.59-1~deb12u1_amd64.deb a54966f747c61bff59d1197dd72c582436dd38696d054f5ec38f4ff7d2ae41f9 160264 apache2-data_2.4.59-1~deb12u1_all.deb 41e7c068796b5dfbaa6985483171c330655e530b3507b63d7a00b5646513b463 312108 apache2-dev_2.4.59-1~deb12u1_amd64.deb 8c6ab968ea42bf4820273329cc3972dfc097ad9eab47013e941de7effa7acc3c 4022328 apache2-doc_2.4.59-1~deb12u1_all.deb f294826ac5db7123a667b3d7048241ffbcb94608ae9658d7f5e611decbcd65ba 3140 apache2-ssl-dev_2.4.59-1~deb12u1_amd64.deb 08bf4c363375d78f6c6a2d731e5d6f6f1537aba40f1bc0eb99e820b8c71ea362 12392 apache2-suexec-custom-dbgsym_2.4.59-1~deb12u1_amd64.deb 631d97f2123c598f4ac9acb0951dcf518b9d513ed01b372a844a512afd0bd0ac 140492 apache2-suexec-custom_2.4.59-1~deb12u1_amd64.deb fea71c46f48fad02ed5ad060589bcc2cf11fd95ef975e6b0fad11053bbdccfc0 11204
apache2_2.4.59-1~deb11u1_amd64.changes ACCEPTED into oldstable-proposed-updates->oldstable-new
Thank you for your contribution to Debian. Mapping oldstable-security to oldstable-proposed-updates. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 05 Apr 2024 16:08:04 +0400 Source: apache2 Binary: apache2 apache2-bin apache2-bin-dbgsym apache2-data apache2-dev apache2-doc apache2-ssl-dev apache2-suexec-custom apache2-suexec-custom-dbgsym apache2-suexec-pristine apache2-suexec-pristine-dbgsym apache2-utils apache2-utils-dbgsym libapache2-mod-md libapache2-mod-proxy-uwsgi Architecture: source amd64 all Version: 2.4.59-1~deb11u1 Distribution: bullseye-security Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Yadd Description: apache2- Apache HTTP Server apache2-bin - Apache HTTP Server (modules and other binary files) apache2-data - Apache HTTP Server (common files) apache2-dev - Apache HTTP Server (development headers) apache2-doc - Apache HTTP Server (on-site documentation) apache2-ssl-dev - Apache HTTP Server (mod_ssl development headers) apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec apache2-utils - Apache HTTP Server (utility programs for web servers) libapache2-mod-md - transitional package libapache2-mod-proxy-uwsgi - transitional package Closes: 1068412 Changes: apache2 (2.4.59-1~deb11u1) bullseye-security; urgency=medium . * New upstream version 2.4.58 (Closes: CVE-2023-31122, CVE-2023-43622, CVE-2023-45802) * Drop 2.4.56-regression patches * New upstream version 2.4.59 (Closes: #1068412 CVE-2024-27316 CVE-2024-24795 CVE-2023-38709) * Install NOTICE files * Update test framework * Refresh patches Checksums-Sha1: b0c553ee2f9076ab255d36f6f77a4155e8f5180d 3539 apache2_2.4.59-1~deb11u1.dsc 7a118baaed0f2131e482f93f5057038ca6c021be 9843252 apache2_2.4.59.orig.tar.gz 837cdf46898d962c4c05642745566249fc91e52b 833 apache2_2.4.59.orig.tar.gz.asc 8d3d9c0ec949faa3683bc395b0955584347323a6 895172 apache2_2.4.59-1~deb11u1.debian.tar.xz 651b4de4722fb3cf7331e0df7147738b7015bf89 3308712 apache2-bin-dbgsym_2.4.59-1~deb11u1_amd64.deb 46176b8ad83ca0e991d575f498d67871b2c2e1d6 1447660 apache2-bin_2.4.59-1~deb11u1_amd64.deb 2cd7eef5039ed029710efc9edb1c8b8d3822381b 160212 apache2-data_2.4.59-1~deb11u1_all.deb 7ae879f3f9fd07d0b0faff14e40af9d955e11a3d 374820 apache2-dev_2.4.59-1~deb11u1_amd64.deb a74bbd0f3c77d93b2933e9a7ca2c4daef09767ae 4085344 apache2-doc_2.4.59-1~deb11u1_all.deb 6b04306349ed3dab9a9baae0bb6ecc733d87101e 3148 apache2-ssl-dev_2.4.59-1~deb11u1_amd64.deb 592c2db4a61122edf71651806dab471f3c4fd523 12348 apache2-suexec-custom-dbgsym_2.4.59-1~deb11u1_amd64.deb c8d55c5c2d152295a8f052afb4687b4c608010b6 203964 apache2-suexec-custom_2.4.59-1~deb11u1_amd64.deb f15301bcdfa07e497b13d2e2b63f72b8b1b5e8d1 11140 apache2-suexec-pristine-dbgsym_2.4.59-1~deb11u1_amd64.deb 32bca066d4c74d879a47c9695eba65305ce40beb 202404 apache2-suexec-pristine_2.4.59-1~deb11u1_amd64.deb c96298d3153025ee40865dc3114cde0cdc768cd2 115748 apache2-utils-dbgsym_2.4.59-1~deb11u1_amd64.deb 9d40390c27ffcfb4291074e8da52e85d7c1542a4 271100 apache2-utils_2.4.59-1~deb11u1_amd64.deb b6c21fd9d72ce97e5bed90e742367bd956752d4e 12690 apache2_2.4.59-1~deb11u1_amd64.buildinfo cdb3c0c6f59f347ab1a5a05759bb0da7a886a1fa 283732 apache2_2.4.59-1~deb11u1_amd64.deb dba70fb6f094395bf44685af6de02efbb9112f4b 956 libapache2-mod-md_2.4.59-1~deb11u1_amd64.deb 93d5d7eda14453906d757151f463cae78d545069 1136 libapache2-mod-proxy-uwsgi_2.4.59-1~deb11u1_amd64.deb Checksums-Sha256: 778f49efe1aab7caa9446c4027664cbc77c9b54d4f11e69fc1b1e3f4725e8b77 3539 apache2_2.4.59-1~deb11u1.dsc e4ec4ce12c6c8f5a794dc2263d126cb1d6ef667f034c4678ec945d61286e8b0f 9843252 apache2_2.4.59.orig.tar.gz 0ad3f670b944ebf08c81544bc82fae9496e88d96840cd0612d8cdeaa073eb06d 833 apache2_2.4.59.orig.tar.gz.asc 04df061eedac33928a93afe996a9839e83a5daddc5ee53088a0bb37090ed9331 895172 apache2_2.4.59-1~deb11u1.debian.tar.xz fde3f605f2591fc8ec3ef50cc3fa13e318060fe51f5fa5253654889a48989c36 3308712 apache2-bin-dbgsym_2.4.59-1~deb11u1_amd64.deb a8b9c67f1f198511d1769ea1d181950c329b82110812515fcc126da12d78ac55 1447660 apache2-bin_2.4.59-1~deb11u1_amd64.deb 701dd3e0bae253b68d9ee12165c67557fc9b9bd485c7d6306410754dd5606ddc 160212 apache2-data_2.4.59-1~deb11u1_all.deb 81082a7e4bb4a469dba94655c5a28cfa215b1aeb189244066904be9eb3670f4b 374820 apache2-dev_2.4.59-1~deb11u1_amd64.deb 364ea71d4666f290d80692d9104e1c021380e677821b15bcdb79888be017261f 4085344 apache2-doc_2.4.59-1~deb11u1_all.deb 49a7fd50c283a3a039e59ab3c14702ecb2cff94296ffa9d3bded6ec6cca7c97d 3148 apache2-ssl-dev_2.4.59-1~deb11u1_amd64.deb c31f146feaa81ae84ebeba6509ebf1d9cd55f9c2e8b6a5b1f5d9a5837f0ee5dc 12348 apache2-suexec-custom-dbgsym_2.4.59-1~deb11u1_amd64.deb 6c646b06d6187df71e36b5400a7fac1df2e578219e1856e57cd3038a7c65eefb 203964 apache2-suexec-custom_2.4.59-1~deb11u1_amd64.deb
Bug#1068412: apache2: Missing Upgrade to Security Issues in bookworm
Package: apache2 Version: 2.4.57-2 Followup-For: Bug #1068412 Dear Maintainer, *** Reporter, please consider answering these questions, where appropriate *** * What led up to the situation? Security Updates in unstable are not propagated to stable * What exactly did you do (or not do) that was effective (or ineffective)?A Waited for the update to arrive in bookworm * What was the outcome of this action? Well it's not there after almost two weeks * What outcome did you expect instead? ... *** End of the template - remove these template lines *** Apparently there are build issues in sid (maybe due to t64 migration). However that is not a problem in bookworm and after. Please consider to work around the issues and have a fix for "normal users". Ubuntu has provided the update to 2.4.59 last week already. Thank you! Bets regards Peter PS: below is only one of my systems. arm64, amd64 and armhf all miss this update! -- System Information: Debian Release: 12.5 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable') Architecture: arm64 (aarch64) Kernel: Linux 6.1.0-18-arm64 (SMP w/4 CPU threads) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages apache2 depends on: pn apache2-bin pn apache2-data pn apache2-utils ii init-system-helpers1.65.2 ii lsb-base 11.6 ii media-types10.0.0 ii perl 5.36.0-7+deb12u1 ii procps 2:4.0.2-3 ii sysvinit-utils [lsb-base] 3.06-4 Versions of packages apache2 recommends: ii ssl-cert 1.1.2 Versions of packages apache2 suggests: pn apache2-doc pn apache2-suexec-pristine | apache2-suexec-custom pn www-browser
Instalacja pv
Dzień dobry, czy są Państwo otwarci na niezobowiązującą rozmowę na temat fotowoltaiki? Jako firma specjalizująca się w instalacji i serwisie najlepszych jakościowo paneli słonecznych na rynku chciałbym przedstawić propozycję, jaką wspólnie z zespołem przygotowaliśmy dla Państwa obiektu. Będę wdzięczny za wiadomość od Państwa czy możemy porozmawiać. Pozdrawiam Konrad Zieliński
Bug#1068412: marked as done (apache2: CVE-2024-27316 CVE-2024-24795 CVE-2023-38709)
Your message dated Fri, 5 Apr 2024 21:00:46 +0200 with message-id and subject line [ftpmas...@ftp-master.debian.org: Accepted apache2 2.4.59-1 (source) into unstable] has caused the Debian Bug report #1068412, regarding apache2: CVE-2024-27316 CVE-2024-24795 CVE-2023-38709 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1068412: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068412 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Source: apache2 X-Debbugs-CC: t...@security.debian.org Severity: grave Tags: security Hi, The following vulnerabilities were published for apache2. CVE-2024-27316[0]: https://www.kb.cert.org/vuls/id/421644 https://www.openwall.com/lists/oss-security/2024/04/04/4 CVE-2024-24795[1]: https://www.openwall.com/lists/oss-security/2024/04/04/5 CVE-2023-38709[2]: https://www.openwall.com/lists/oss-security/2024/04/04/3 If you fix the vulnerabilities please also make sure to include the CVE (Common Vulnerabilities & Exposures) ids in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2024-27316 https://www.cve.org/CVERecord?id=CVE-2024-27316 [1] https://security-tracker.debian.org/tracker/CVE-2024-24795 https://www.cve.org/CVERecord?id=CVE-2024-24795 [2] https://security-tracker.debian.org/tracker/CVE-2023-38709 https://www.cve.org/CVERecord?id=CVE-2023-38709 Please adjust the affected versions in the BTS as needed. --- End Message --- --- Begin Message --- Source: apache2 Source-Version: 2.4.59-1 - Forwarded message from Debian FTP Masters - -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 05 Apr 2024 08:08:11 +0400 Source: apache2 Built-For-Profiles: nocheck Architecture: source Version: 2.4.59-1 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Yadd Closes: 1032628 1054564 Changes: apache2 (2.4.59-1) unstable; urgency=medium . [ Stefan Fritsch ] * Remove old transitional packages libapache2-mod-md and libapache2-mod-proxy-uwsgi. Closes: #1032628 . [ Yadd ] * mod_proxy_connect: disable AllowCONNECT by default (Closes: #1054564) * Refresh patches * New upstream version 2.4.59 * Refresh patches * Update patches * Update test framework Checksums-Sha1: f1cf18103ca23c57beaa2985bbbe4eee1e8dff87 3334 apache2_2.4.59-1.dsc 7a118baaed0f2131e482f93f5057038ca6c021be 9843252 apache2_2.4.59.orig.tar.gz 837cdf46898d962c4c05642745566249fc91e52b 833 apache2_2.4.59.orig.tar.gz.asc 3e1cad5ee1fc66d350465c1e81d7e0f88221bc01 820300 apache2_2.4.59-1.debian.tar.xz Checksums-Sha256: 25e6990e65cb685f3172143648806ab0fd263a18cd412155f0d14d7ef9987428 3334 apache2_2.4.59-1.dsc e4ec4ce12c6c8f5a794dc2263d126cb1d6ef667f034c4678ec945d61286e8b0f 9843252 apache2_2.4.59.orig.tar.gz 0ad3f670b944ebf08c81544bc82fae9496e88d96840cd0612d8cdeaa073eb06d 833 apache2_2.4.59.orig.tar.gz.asc 1e869a5024215a2a9b69603daf1395840774640f7b2701ca4b7971452a0641d1 820300 apache2_2.4.59-1.debian.tar.xz Files: 3f3ee286b583f22ec5cb3efc1f0a5016 3334 httpd optional apache2_2.4.59-1.dsc c39d28e0777bc95631cb49958fdb6601 9843252 httpd optional apache2_2.4.59.orig.tar.gz 3c342b3dcc0fe227a1fffdf9997987d0 833 httpd optional apache2_2.4.59.orig.tar.gz.asc 4da024370ede9c5a75a0df725be0cdc5 820300 httpd optional apache2_2.4.59-1.debian.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEAN/li4tVV3nRAF7J9tdMp8mZ7ukFAmYPec8ACgkQ9tdMp8mZ 7umCiw//TB1rIA1czwHsUrdeOIT3HG9qERzBJsmsP8nyg+cIrytiGfhlt2eOmLYO X+Wo19J98VuCmTbJClb6opAfSpvJG2AmNUl/PYAqOBzvDgR+QlEMmVXVgxUp9+Tv 0e0P2H+8U0pO3dE51VIXqYtCLTLQnLaci763ewB0oRlSWuzoVNDDahUS3iJ5e58o btwUQQwq+2F+RBclRhuXca3dOI93UBZDsv56mxR+p2o0vpo+pQRZjHDv8tzT3bOq /PyWusXKPDf9MXYZqwY2TgYx8v/YdDVYqzgr6Tj/VXgXEKC22pudzSv9/J5iGfHh VHmf02Gh+0wNWmxajqK2KlxjMON/Qn6kyoAok9w5vv4HtOXBZimzdq0kDsc8EjJl QuaBcwIAy+0EATBhjaVY7sHtM9SydJNr1f4DBBD9kEB2DKEE9n7/iFxcFfSMd52Y xwJ4fPk1fe1ki7k/qn0VULpzf1iM3JDQE19uXyE29cSW4eJhiWvH1v+NZzzxNo+t NtDhSIEEnUkGZSsYyg2qg5NH3e3PJMadc1nTRY6hVNzGpJlsUrCKnMOZbJsBQM6S cNCY48ux8ziQmJNowvBVbXf6/+SH9h2+CYFRw9GZagaNe1yfErNglbn78KZqJUHw YcXIFc96qeznRJ9zRhPdHGGeqa+nETH1lWBp6eitihkKhDjCF48= =dQDE -END PGP SIGNATURE- - End forwarded message End Message ---
Processed: found 1068412 in 2.4.57-2, found 1068412 in 2.4.56-1~deb11u2
Processing commands for cont...@bugs.debian.org: > found 1068412 2.4.57-2 Bug #1068412 [src:apache2] apache2: CVE-2024-27316 CVE-2024-24795 CVE-2023-38709 Marked as found in versions apache2/2.4.57-2. > found 1068412 2.4.56-1~deb11u2 Bug #1068412 [src:apache2] apache2: CVE-2024-27316 CVE-2024-24795 CVE-2023-38709 Marked as found in versions apache2/2.4.56-1~deb11u2. > thanks Stopping processing here. Please contact me if you need assistance. -- 1068412: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068412 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
[ftpmas...@ftp-master.debian.org: Accepted apache2 2.4.59-1 (source) into unstable]
Source: apache2 Source-Version: 2.4.59-1 - Forwarded message from Debian FTP Masters - -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 05 Apr 2024 08:08:11 +0400 Source: apache2 Built-For-Profiles: nocheck Architecture: source Version: 2.4.59-1 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Yadd Closes: 1032628 1054564 Changes: apache2 (2.4.59-1) unstable; urgency=medium . [ Stefan Fritsch ] * Remove old transitional packages libapache2-mod-md and libapache2-mod-proxy-uwsgi. Closes: #1032628 . [ Yadd ] * mod_proxy_connect: disable AllowCONNECT by default (Closes: #1054564) * Refresh patches * New upstream version 2.4.59 * Refresh patches * Update patches * Update test framework Checksums-Sha1: f1cf18103ca23c57beaa2985bbbe4eee1e8dff87 3334 apache2_2.4.59-1.dsc 7a118baaed0f2131e482f93f5057038ca6c021be 9843252 apache2_2.4.59.orig.tar.gz 837cdf46898d962c4c05642745566249fc91e52b 833 apache2_2.4.59.orig.tar.gz.asc 3e1cad5ee1fc66d350465c1e81d7e0f88221bc01 820300 apache2_2.4.59-1.debian.tar.xz Checksums-Sha256: 25e6990e65cb685f3172143648806ab0fd263a18cd412155f0d14d7ef9987428 3334 apache2_2.4.59-1.dsc e4ec4ce12c6c8f5a794dc2263d126cb1d6ef667f034c4678ec945d61286e8b0f 9843252 apache2_2.4.59.orig.tar.gz 0ad3f670b944ebf08c81544bc82fae9496e88d96840cd0612d8cdeaa073eb06d 833 apache2_2.4.59.orig.tar.gz.asc 1e869a5024215a2a9b69603daf1395840774640f7b2701ca4b7971452a0641d1 820300 apache2_2.4.59-1.debian.tar.xz Files: 3f3ee286b583f22ec5cb3efc1f0a5016 3334 httpd optional apache2_2.4.59-1.dsc c39d28e0777bc95631cb49958fdb6601 9843252 httpd optional apache2_2.4.59.orig.tar.gz 3c342b3dcc0fe227a1fffdf9997987d0 833 httpd optional apache2_2.4.59.orig.tar.gz.asc 4da024370ede9c5a75a0df725be0cdc5 820300 httpd optional apache2_2.4.59-1.debian.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEAN/li4tVV3nRAF7J9tdMp8mZ7ukFAmYPec8ACgkQ9tdMp8mZ 7umCiw//TB1rIA1czwHsUrdeOIT3HG9qERzBJsmsP8nyg+cIrytiGfhlt2eOmLYO X+Wo19J98VuCmTbJClb6opAfSpvJG2AmNUl/PYAqOBzvDgR+QlEMmVXVgxUp9+Tv 0e0P2H+8U0pO3dE51VIXqYtCLTLQnLaci763ewB0oRlSWuzoVNDDahUS3iJ5e58o btwUQQwq+2F+RBclRhuXca3dOI93UBZDsv56mxR+p2o0vpo+pQRZjHDv8tzT3bOq /PyWusXKPDf9MXYZqwY2TgYx8v/YdDVYqzgr6Tj/VXgXEKC22pudzSv9/J5iGfHh VHmf02Gh+0wNWmxajqK2KlxjMON/Qn6kyoAok9w5vv4HtOXBZimzdq0kDsc8EjJl QuaBcwIAy+0EATBhjaVY7sHtM9SydJNr1f4DBBD9kEB2DKEE9n7/iFxcFfSMd52Y xwJ4fPk1fe1ki7k/qn0VULpzf1iM3JDQE19uXyE29cSW4eJhiWvH1v+NZzzxNo+t NtDhSIEEnUkGZSsYyg2qg5NH3e3PJMadc1nTRY6hVNzGpJlsUrCKnMOZbJsBQM6S cNCY48ux8ziQmJNowvBVbXf6/+SH9h2+CYFRw9GZagaNe1yfErNglbn78KZqJUHw YcXIFc96qeznRJ9zRhPdHGGeqa+nETH1lWBp6eitihkKhDjCF48= =dQDE -END PGP SIGNATURE- - End forwarded message -
Bug#1068412: apache2: CVE-2024-27316 CVE-2024-24795 CVE-2023-38709
On 4/5/24 15:58, Moritz Muehlenhoff wrote: On Fri, Apr 05, 2024 at 08:16:43AM +0400, Yadd wrote: On 4/4/24 22:51, Moritz Mühlenhoff wrote: Source: apache2 X-Debbugs-CC: t...@security.debian.org Severity: grave Tags: security Hi, The following vulnerabilities were published for apache2. CVE-2024-27316[0]: https://www.kb.cert.org/vuls/id/421644 https://www.openwall.com/lists/oss-security/2024/04/04/4 CVE-2024-24795[1]: https://www.openwall.com/lists/oss-security/2024/04/04/5 CVE-2023-38709[2]: https://www.openwall.com/lists/oss-security/2024/04/04/3 If you fix the vulnerabilities please also make sure to include the CVE (Common Vulnerabilities & Exposures) ids in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2024-27316 https://www.cve.org/CVERecord?id=CVE-2024-27316 [1] https://security-tracker.debian.org/tracker/CVE-2024-24795 https://www.cve.org/CVERecord?id=CVE-2024-24795 [2] https://security-tracker.debian.org/tracker/CVE-2023-38709 https://www.cve.org/CVERecord?id=CVE-2023-38709 Please adjust the affected versions in the BTS as needed. Hi, I'm ready to push 2.4.59 into bookworm-security. Note that this includes a test-framework update Target distribution needs to be bookworm-security, with that please upload. Can you also preparea the equivalent change for bullseye-security? The uploads can already happen, but let's keep the update unreleased until next week, then we can look for regressions reported in unstable (and check with Ondrej if we received reports based on his repo) Cheers, Moritz Both Bullseye and Bookworm uploaded. Bullseye version embeds also a copyright fix
Bug#1068412: apache2: CVE-2024-27316 CVE-2024-24795 CVE-2023-38709
On Fri, Apr 05, 2024 at 08:16:43AM +0400, Yadd wrote: > On 4/4/24 22:51, Moritz Mühlenhoff wrote: > > Source: apache2 > > X-Debbugs-CC: t...@security.debian.org > > Severity: grave > > Tags: security > > > > Hi, > > > > The following vulnerabilities were published for apache2. > > > > CVE-2024-27316[0]: > > https://www.kb.cert.org/vuls/id/421644 > > https://www.openwall.com/lists/oss-security/2024/04/04/4 > > > > CVE-2024-24795[1]: > > https://www.openwall.com/lists/oss-security/2024/04/04/5 > > > > CVE-2023-38709[2]: > > https://www.openwall.com/lists/oss-security/2024/04/04/3 > > > > If you fix the vulnerabilities please also make sure to include the > > CVE (Common Vulnerabilities & Exposures) ids in your changelog entry. > > > > For further information see: > > > > [0] https://security-tracker.debian.org/tracker/CVE-2024-27316 > > https://www.cve.org/CVERecord?id=CVE-2024-27316 > > [1] https://security-tracker.debian.org/tracker/CVE-2024-24795 > > https://www.cve.org/CVERecord?id=CVE-2024-24795 > > [2] https://security-tracker.debian.org/tracker/CVE-2023-38709 > > https://www.cve.org/CVERecord?id=CVE-2023-38709 > > > > Please adjust the affected versions in the BTS as needed. > > Hi, > > I'm ready to push 2.4.59 into bookworm-security. Note that this includes a > test-framework update Target distribution needs to be bookworm-security, with that please upload. Can you also preparea the equivalent change for bullseye-security? The uploads can already happen, but let's keep the update unreleased until next week, then we can look for regressions reported in unstable (and check with Ondrej if we received reports based on his repo) Cheers, Moritz
Bug#1054564: marked as done (apache2: mod_proxy_connect insecure default server-wide AllowCONNECT value)
Your message dated Fri, 05 Apr 2024 04:34:28 + with message-id and subject line Bug#1054564: fixed in apache2 2.4.59-1 has caused the Debian Bug report #1054564, regarding apache2: mod_proxy_connect insecure default server-wide AllowCONNECT value to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1054564: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054564 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: apache2 Version: 2.4.56-1~deb11u2 Severity: normal X-Debbugs-Cc: raphael.d...@gmail.com Dear Maintainer, # Context For years, one of my SSL vhost (on :443) has been relying mod_proxy_http to (safely) forward some requests to a backend, acting as a reverse-proxy. ``` # Something like ProxyRequests On SSLProxyEngine On RewriteRule ^/.well-known/.*$ "https://gitlab-foobar/%{REQUEST_URI}; [P,L] ``` Recently, I experienced the need to (safely) forward some requests (from another server I own) through this server (because of some network/geoblocking problem). I enabled `mod_proxy_connect` and (safely) configured a forward-proxy on :80 (using `Require valid-user / ip`). ``` # Something like ProxyRequests On Authtype Basic AuthUserFile ... p Require valid-user Require ip ... ``` # Problem While this :80 forward-proxy vhost was secure, I later discovered, that the original (and almost forgotten) vhost had incidentally become an open-proxy (!) The reasons are: - mod_proxy_connect is globally enabled (affects all vhosts) - AllowCONNECT defaults to "443 563" (affects all vhosts) Said otherwise, *any* secure reverse-proxy vhost configuration become de-facto an insecure open forward-proxy vhost as soon as `mod_proxy_connect` is globally enabled. This sounds contrary to best security practices. (and I bet more than one server out there is silently affected by this insecure-by-default configuration) # Proposed solution I suggest to add a server-wide `AllowCONNECT 0` directive inside `/etc/apache2/mods-available/proxy_connect.load` (virtually disabling CONNECT) so that individual vhosts relying on it would have to explicitely set the value at the vhost-level. It would be more logical (scope/side-effects) and avoid holes being punched into existing (and otherwise secure) reverse-proxy vhosts. # Additional notes To cap it all my proxy-enabled vhost was the first one (lexicographically speaking) making it the destination of all the random internet SSL traffic scanners. Google-friendly list of typical log messages that should raise flags: > AH00898: Connect to remote machine blocked returned by... > AH00939: CONNECT: attempt to connect to ...:443 (...) failed > AH10221: proxy: CONNECT: client flushing failed (-102) > AH10221: proxy: CONNECT: origin flushing failed (-102) -- Package-specific info: -- System Information: Debian Release: bullseye Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 6.2.0-35-generic (SMP w/4 CPU threads; PREEMPT) Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages apache2 depends on: ii apache2-bin 2.4.56-1~deb11u2 ii apache2-data 2.4.56-1~deb11u2 ii apache2-utils2.4.56-1~deb11u2 Versions of packages apache2 recommends: pn ssl-cert Versions of packages apache2 suggests: pn apache2-doc pn apache2-suexec-pristine | apache2-suexec Versions of packages apache2 is related to: ii apache2 2.4.56-1~deb11u2 ii apache2-bin 2.4.56-1~deb11u2 -- Configuration Files: /etc/apache2/apache2.conf changed [not included] -- no debconf information -- GPG id: 0xF41572CEBD4218F4 --- End Message --- --- Begin Message --- Source: apache2 Source-Version: 2.4.59-1 Done: Yadd We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 1054...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Yadd (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing
Bug#1032628: marked as done (please drop transitional package libapache2-mod-proxy-uwsgi from src:apache2)
Your message dated Fri, 05 Apr 2024 04:34:28 + with message-id and subject line Bug#1032628: fixed in apache2 2.4.59-1 has caused the Debian Bug report #1032628, regarding please drop transitional package libapache2-mod-proxy-uwsgi from src:apache2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1032628: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1032628 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: libapache2-mod-proxy-uwsgi Version: 2.4.56-1 Severity: normal user: qa.debian@packages.debian.org usertags: transitional Please drop the transitional package libapache2-mod-proxy-uwsgi (from the source package apache2) after the release of bookworm, it has been released with buster and bullseye already... Description: transitional package Package: libapache2-mod-proxy-uwsgi Version: 2.4.38-3+deb10u8 Version: 2.4.54-1~deb11u1 Version: 2.4.56-1 Thanks for maintaining apache2! -- cheers, Holger ⢀⣴⠾⠻⢶⣦⠀ ⣾⠁⢠⠒⠀⣿⡁ holger@(debian|reproducible-builds|layer-acht).org ⢿⡄⠘⠷⠚⠋⠀ OpenPGP: B8BF54137B09D35CF026FE9D 091AB856069AAA1C ⠈⠳⣄ Try to imagine a future where paying for your morning coffee involved smashing an iPhone and burning enough fossil fuels to run your entire household for 60 days. That's the environmental cost of the "revolutionary" technology behind Bitcoin in a nutshell. https://twitter.com/smdiehl/status/1350869944888664064 signature.asc Description: PGP signature --- End Message --- --- Begin Message --- Source: apache2 Source-Version: 2.4.59-1 Done: Yadd We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 1032...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Yadd (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 05 Apr 2024 08:08:11 +0400 Source: apache2 Built-For-Profiles: nocheck Architecture: source Version: 2.4.59-1 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Yadd Closes: 1032628 1054564 Changes: apache2 (2.4.59-1) unstable; urgency=medium . [ Stefan Fritsch ] * Remove old transitional packages libapache2-mod-md and libapache2-mod-proxy-uwsgi. Closes: #1032628 . [ Yadd ] * mod_proxy_connect: disable AllowCONNECT by default (Closes: #1054564) * Refresh patches * New upstream version 2.4.59 * Refresh patches * Update patches * Update test framework Checksums-Sha1: f1cf18103ca23c57beaa2985bbbe4eee1e8dff87 3334 apache2_2.4.59-1.dsc 7a118baaed0f2131e482f93f5057038ca6c021be 9843252 apache2_2.4.59.orig.tar.gz 837cdf46898d962c4c05642745566249fc91e52b 833 apache2_2.4.59.orig.tar.gz.asc 3e1cad5ee1fc66d350465c1e81d7e0f88221bc01 820300 apache2_2.4.59-1.debian.tar.xz Checksums-Sha256: 25e6990e65cb685f3172143648806ab0fd263a18cd412155f0d14d7ef9987428 3334 apache2_2.4.59-1.dsc e4ec4ce12c6c8f5a794dc2263d126cb1d6ef667f034c4678ec945d61286e8b0f 9843252 apache2_2.4.59.orig.tar.gz 0ad3f670b944ebf08c81544bc82fae9496e88d96840cd0612d8cdeaa073eb06d 833 apache2_2.4.59.orig.tar.gz.asc 1e869a5024215a2a9b69603daf1395840774640f7b2701ca4b7971452a0641d1 820300 apache2_2.4.59-1.debian.tar.xz Files: 3f3ee286b583f22ec5cb3efc1f0a5016 3334 httpd optional apache2_2.4.59-1.dsc c39d28e0777bc95631cb49958fdb6601 9843252 httpd optional apache2_2.4.59.orig.tar.gz 3c342b3dcc0fe227a1fffdf9997987d0 833 httpd optional apache2_2.4.59.orig.tar.gz.asc 4da024370ede9c5a75a0df725be0cdc5 820300 httpd optional apache2_2.4.59-1.debian.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEAN/li4tVV3nRAF7J9tdMp8mZ7ukFAmYPec8ACgkQ9tdMp8mZ 7umCiw//TB1rIA1czwHsUrdeOIT3HG9qERzBJsmsP8nyg+cIrytiGfhlt2eOmLYO X+Wo19J98VuCmTbJClb6opAfSpvJG2AmNUl/PYAqOBzvDgR+QlEMmVXVgxUp9+Tv 0e0P2H+8U0pO3dE51VIXqYtCLTLQnLaci763ewB0oRlSWuzoVNDDahUS3iJ5e58o btwUQQwq+2F+RBclRhuXca3dOI93UBZDsv56mxR+p2o0vpo+pQRZjHDv8tzT3bOq /PyWusXKPDf9MXYZqwY2TgYx8v/YdDVYqzgr6Tj/VXgXEKC22pudzSv9/J5iGfHh VHmf02Gh+0wNWmxajqK2KlxjMON/Qn6kyoAok9w5vv4HtOXBZimzdq0kDsc8EjJl
Processing of apache2_2.4.59-1_sourceonly.changes
apache2_2.4.59-1_sourceonly.changes uploaded successfully to localhost along with the files: apache2_2.4.59-1.dsc apache2_2.4.59.orig.tar.gz apache2_2.4.59.orig.tar.gz.asc apache2_2.4.59-1.debian.tar.xz Greetings, Your Debian queue daemon (running on host usper.debian.org)
apache2_2.4.59-1_sourceonly.changes ACCEPTED into unstable
Thank you for your contribution to Debian. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 05 Apr 2024 08:08:11 +0400 Source: apache2 Built-For-Profiles: nocheck Architecture: source Version: 2.4.59-1 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Yadd Closes: 1032628 1054564 Changes: apache2 (2.4.59-1) unstable; urgency=medium . [ Stefan Fritsch ] * Remove old transitional packages libapache2-mod-md and libapache2-mod-proxy-uwsgi. Closes: #1032628 . [ Yadd ] * mod_proxy_connect: disable AllowCONNECT by default (Closes: #1054564) * Refresh patches * New upstream version 2.4.59 * Refresh patches * Update patches * Update test framework Checksums-Sha1: f1cf18103ca23c57beaa2985bbbe4eee1e8dff87 3334 apache2_2.4.59-1.dsc 7a118baaed0f2131e482f93f5057038ca6c021be 9843252 apache2_2.4.59.orig.tar.gz 837cdf46898d962c4c05642745566249fc91e52b 833 apache2_2.4.59.orig.tar.gz.asc 3e1cad5ee1fc66d350465c1e81d7e0f88221bc01 820300 apache2_2.4.59-1.debian.tar.xz Checksums-Sha256: 25e6990e65cb685f3172143648806ab0fd263a18cd412155f0d14d7ef9987428 3334 apache2_2.4.59-1.dsc e4ec4ce12c6c8f5a794dc2263d126cb1d6ef667f034c4678ec945d61286e8b0f 9843252 apache2_2.4.59.orig.tar.gz 0ad3f670b944ebf08c81544bc82fae9496e88d96840cd0612d8cdeaa073eb06d 833 apache2_2.4.59.orig.tar.gz.asc 1e869a5024215a2a9b69603daf1395840774640f7b2701ca4b7971452a0641d1 820300 apache2_2.4.59-1.debian.tar.xz Files: 3f3ee286b583f22ec5cb3efc1f0a5016 3334 httpd optional apache2_2.4.59-1.dsc c39d28e0777bc95631cb49958fdb6601 9843252 httpd optional apache2_2.4.59.orig.tar.gz 3c342b3dcc0fe227a1fffdf9997987d0 833 httpd optional apache2_2.4.59.orig.tar.gz.asc 4da024370ede9c5a75a0df725be0cdc5 820300 httpd optional apache2_2.4.59-1.debian.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEAN/li4tVV3nRAF7J9tdMp8mZ7ukFAmYPec8ACgkQ9tdMp8mZ 7umCiw//TB1rIA1czwHsUrdeOIT3HG9qERzBJsmsP8nyg+cIrytiGfhlt2eOmLYO X+Wo19J98VuCmTbJClb6opAfSpvJG2AmNUl/PYAqOBzvDgR+QlEMmVXVgxUp9+Tv 0e0P2H+8U0pO3dE51VIXqYtCLTLQnLaci763ewB0oRlSWuzoVNDDahUS3iJ5e58o btwUQQwq+2F+RBclRhuXca3dOI93UBZDsv56mxR+p2o0vpo+pQRZjHDv8tzT3bOq /PyWusXKPDf9MXYZqwY2TgYx8v/YdDVYqzgr6Tj/VXgXEKC22pudzSv9/J5iGfHh VHmf02Gh+0wNWmxajqK2KlxjMON/Qn6kyoAok9w5vv4HtOXBZimzdq0kDsc8EjJl QuaBcwIAy+0EATBhjaVY7sHtM9SydJNr1f4DBBD9kEB2DKEE9n7/iFxcFfSMd52Y xwJ4fPk1fe1ki7k/qn0VULpzf1iM3JDQE19uXyE29cSW4eJhiWvH1v+NZzzxNo+t NtDhSIEEnUkGZSsYyg2qg5NH3e3PJMadc1nTRY6hVNzGpJlsUrCKnMOZbJsBQM6S cNCY48ux8ziQmJNowvBVbXf6/+SH9h2+CYFRw9GZagaNe1yfErNglbn78KZqJUHw YcXIFc96qeznRJ9zRhPdHGGeqa+nETH1lWBp6eitihkKhDjCF48= =dQDE -END PGP SIGNATURE- pgpiykvbhrNFr.pgp Description: PGP signature
Processed: tagging 1068412
Processing commands for cont...@bugs.debian.org: > tags 1068412 + upstream Bug #1068412 [src:apache2] apache2: CVE-2024-27316 CVE-2024-24795 CVE-2023-38709 Added tag(s) upstream. > thanks Stopping processing here. Please contact me if you need assistance. -- 1068412: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068412 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Processed: found 1068412 in 2.4.58-1
Processing commands for cont...@bugs.debian.org: > found 1068412 2.4.58-1 Bug #1068412 [src:apache2] apache2: CVE-2024-27316 CVE-2024-24795 CVE-2023-38709 Marked as found in versions apache2/2.4.58-1. > thanks Stopping processing here. Please contact me if you need assistance. -- 1068412: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068412 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#1068412: apache2: CVE-2024-27316 CVE-2024-24795 CVE-2023-38709
Source: apache2 X-Debbugs-CC: t...@security.debian.org Severity: grave Tags: security Hi, The following vulnerabilities were published for apache2. CVE-2024-27316[0]: https://www.kb.cert.org/vuls/id/421644 https://www.openwall.com/lists/oss-security/2024/04/04/4 CVE-2024-24795[1]: https://www.openwall.com/lists/oss-security/2024/04/04/5 CVE-2023-38709[2]: https://www.openwall.com/lists/oss-security/2024/04/04/3 If you fix the vulnerabilities please also make sure to include the CVE (Common Vulnerabilities & Exposures) ids in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2024-27316 https://www.cve.org/CVERecord?id=CVE-2024-27316 [1] https://security-tracker.debian.org/tracker/CVE-2024-24795 https://www.cve.org/CVERecord?id=CVE-2024-24795 [2] https://security-tracker.debian.org/tracker/CVE-2023-38709 https://www.cve.org/CVERecord?id=CVE-2023-38709 Please adjust the affected versions in the BTS as needed.
Bug#1057126: Bug#1067104: Acknowledgement (server stalls: AH00046: child process 2876749 still did not exit, sending a SIGKILL)
2024-03-21 13:12 skrev Yaroslav Halchenko: FWIW here is a dirty workaround script I just crafted with chatgpt to monitor/restart apache2 as soon as it starts happening My workaround is simpler, I have this line in root's crontab: 5 * * * * curl --silent --max-time 5 --output /dev/null http://localhost/trac/ || systemctl restart apache2 It seems to restart Apache once every 5-8 days, according to the notices I see from Zabbix. The frequency might very well be related to the number of accesses to the server. -- \\// Peter - http://www.softwolves.pp.se/
Bug#1057126: Bug#1067104: Acknowledgement (server stalls: AH00046: child process 2876749 still did not exit, sending a SIGKILL)
"All ingenious is simple" -- thanks for sharing. I might redo following your example but to check more frequently. On Thu, 21 Mar 2024, Peter Krefting wrote: > My workaround is simpler, I have this line in root's crontab: > 5 * * * * curl --silent --max-time 5 --output /dev/null > http://localhost/trac/ || systemctl restart apache2 -- Yaroslav O. Halchenko Center for Open Neuroscience http://centerforopenneuroscience.org Dartmouth College, 419 Moore Hall, Hinman Box 6207, Hanover, NH 03755 WWW: http://www.linkedin.com/in/yarik
Bug#1057126: Bug#1067104: Acknowledgement (server stalls: AH00046: child process 2876749 still did not exit, sending a SIGKILL)
I think "my" https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1067104 is a duplicate of this one. I blame mod_wsgi since this I believe started to happen after I started to use it. FWIW here is a dirty workaround script I just crafted with chatgpt to monitor/restart apache2 as soon as it starts happening (doesn't happen upon every maintenance event for me I believe). Let me know if I should gather any additional information. #!/bin/bash set -eu # Define the lock file and log directory lock_file="/var/log/apache-scoreboard-restart/lock.lck" log_dir="/var/log/apache-scoreboard-restart/" # Ensure the log directory exists mkdir -p "$log_dir" # Attempt to acquire a lock exec 200>"$lock_file" if ! flock -n 200 ; then echo "Another instance is running." exit 0 fi # Function to perform actions when the specified log line is found handle_scoreboard_full() { local timestamp=$(date --iso-8601=seconds) local log_file="${log_dir}${timestamp}.log" echo "Logging system information to $log_file." { ps auxw -H; echo "---"; lsof; } > "$log_file" echo "Reloading Apache." >> "$log_file" service apache2 reload echo "Sleeping for a minute." >> "$log_file" sleep 60 } # Monitor the Apache error log while true; do tail --follow=name /var/log/apache2/error.log | while read line ; do if echo "$line" | grep -q "AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit." ; then handle_scoreboard_full break # so we start with a fresh tail fi done done -- Yaroslav O. Halchenko Center for Open Neuroscience http://centerforopenneuroscience.org Dartmouth College, 419 Moore Hall, Hinman Box 6207, Hanover, NH 03755 WWW: http://www.linkedin.com/in/yarik signature.asc Description: PGP signature
Bug#1067104: server stalls: AH00046: child process 2876749 still did not exit, sending a SIGKILL
Am 18.03.24 um 13:59 schrieb Yaroslav Halchenko: Package: apache2 Version: 2.4.57-2 Severity: important Server was working just fine for years and recently started to stall completely after 3-7 days of functioning normally. error logs get filled up first with AH03490 and then eventually with AH00045 messages: [Sun Mar 17 02:26:01.353381 2024] [mpm_event:error] [pid 2649373:tid 139846579189632] AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit. ... [Sun Mar 17 22:00:42.201774 2024] [mpm_event:error] [pid 2649373:tid 139846579189632] AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit. [Sun Mar 17 22:00:42.995574 2024] [mpm_event:error] [pid 2649373:tid 139846579189632] AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit. [Sun Mar 17 22:00:42.998488 2024] [mpm_event:notice] [pid 2649373:tid 139846579189632] AH00492: caught SIGWINCH, shutting down gracefully [Sun Mar 17 22:00:46.358981 2024] [core:warn] [pid 2649373:tid 139846579189632] AH00045: child process 2649375 still did not exit, sending a SIGTERM [Sun Mar 17 22:00:46.359064 2024] [core:warn] [pid 2649373:tid 139846579189632] AH00045: child process 2649376 still did not exit, sending a SIGTERM Have you tried increasing ServerLimit as the warning suggests? Apart from that, it is probably the same as https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1057126 . mod_wsgi or some python script is preventing apache processes from dying and they accumulate until the scroeboard is full. Which versions of the wsgi related packages are you using?
Processed: tagging 1032628
Processing commands for cont...@bugs.debian.org: > tags 1032628 + pending Bug #1032628 [libapache2-mod-proxy-uwsgi] please drop transitional package libapache2-mod-proxy-uwsgi from src:apache2 Added tag(s) pending. > thanks Stopping processing here. Please contact me if you need assistance. -- 1032628: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1032628 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#1031034: marked as done (apr: Missing LFS support triggers FTBFS on other packages)
Your message dated Tue, 19 Mar 2024 11:28:35 +0100 with message-id and subject line Re: Bug#1031034: apr: Missing LFS support triggers FTBFS on other packages has caused the Debian Bug report #1031034, regarding apr: Missing LFS support triggers FTBFS on other packages to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1031034: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031034 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: apr Tags: ftbfs, hppa, lfs Version: 1.7.2-2 On 32-bit platforms it's necessary to compile programs and libraries with Large File Support (LFS) in order to allow them to function correctly on filesystems with > 2GB or 4GB size. This can be solved by adding "-D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64" to the CFLAGS variable when compiling. apr is currently missing this LFS support and as such it triggers build-from-source errors in other packages like "subversion" or "devscripts" on such 32-bit platforms. There are various possibilities how to add those two defines, e.g. adding DEB_BUILD_MAINT_OPTIONS = future=+lfs or by manually adding the output of getconf LFS_CFLAGS to the CFLAGS variable. Please note, on 64-bit platforms the return value will be empty which is correct as those flags are not needed on 64-bit arches. Here is one suggested patch for apr from me: diff -up ./debian/rules.org ./debian/rules --- ./debian/rules.org 2023-02-10 16:20:07.911340588 + +++ ./debian/rules 2023-02-10 15:54:17.992511554 + @@ -11,6 +11,9 @@ DEB_HOST_ARCH_OS?= $(shell dpkg-arch DEB_HOST_ARCH_BITS ?= $(shell dpkg-architecture -qDEB_HOST_ARCH_BITS) DEB_HOST_MULTIARCH ?= $(shell dpkg-architecture -qDEB_HOST_MULTIARCH) +# Enable Large File Support (LFS) if necessary: -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 +CFLAGS := $(shell dpkg-buildflags --get CFLAGS) $(shell getconf LFS_CFLAGS) + # The 'build' target needs special handling because there there is a directory # named 'build'. .PHONY: build Please apply this (or another patch) to allow apr to build with LFS support. Thanks, Helge --- End Message --- --- Begin Message --- version: 1.7.2-3.2 Am 20.06.23 um 20:27 schrieb Stefan Fritsch: It seems a large transition will be needed for 64bit time_t, anyway. And glibc enforces _FILE_OFFSET_BITS=64 if _TIME_BITS=64 is set. apr should do both transitions at the same time. It seems there won't be a transition for i386 but the whole point of i386 is running old binaries. https://wiki.debian.org/ReleaseGoals/64bit-time This is fixed now as apr has been rebuilt with 64bit time_t, which implies 64 bit ino_t.--- End Message ---
Bug#1067120: nmu: apache2_2.4.58-1
Package: release.debian.org Severity: normal X-Debbugs-Cc: apac...@packages.debian.org Control: affects -1 + src:apache2 User: release.debian@packages.debian.org Usertags: binnmu libaprutil1t64 1.6.3-1.1 contains a wrong symbol file, causing a wrong dependency on libaprutil164 (missing a "t") for packages using the apr_dbd_init or apr_ldap_init symbols. AFAICS, only apache2 is affected. Note that there is already apache2 2.4.58-1+b2 . I am not sure which version is the correct one in the nmu syntax. nmu apache2_2.4.58-1 . ANY . unstable . -m "Rebuild with fixed libaprutil1t64 for #1067035" dw apache2_2.4.58-1 . ANY . -m "libaprutil1-dev (>= 1.6.3-2)"
Bug#1067035: marked as done (apache2-bin: rebuild for the 64-bit time_t migration is uninstallable)
Your message dated Mon, 18 Mar 2024 21:01:39 +0100 with message-id and subject line Re: Bug#1067035: apache2-bin: rebuild for the 64-bit time_t migration is uninstallable has caused the Debian Bug report #1067035, regarding apache2-bin: rebuild for the 64-bit time_t migration is uninstallable to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1067035: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1067035 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: apache2-bin Version: 2.4.58-1+b2 Severity: serious Justification: uninstallable Dear Maintainer, Attempting to upgrade apache2-bin from rebuild 2.4.58-1+b1 to the rebuild 2.4.58-1+b2 leads to the following error: $ sudo apt upgrade apache2-bin Reading package lists... Done Building dependency tree... Done Reading state information... Done Calculating upgrade... Done Some packages could not be installed. This may mean that you have requested an impossible situation or if you are using the unstable distribution that some required packages have not yet been created or been moved out of Incoming. The following information may help to resolve the situation: The following packages have unmet dependencies: apache2-bin : Depends: libaprutil164 (>= 1.2.7+dfsg) but it is not installable E: Broken packages libaprutil164 (note the missing 't' for "t64") is not available in unstable. The dependency looks typoed and duplicated, as libaprutil1t64 (>= 1.6.0) is also present as needed in the Depends field, Otherwise, have a nice Sunday, :) Étienne. -- Package-specific info: -- System Information: Debian Release: trixie/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 6.7.9-amd64 (SMP w/12 CPU threads; PREEMPT) Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages apache2-bin depends on: ii libapr1t64 [libapr1] 1.7.2-3.2 ii libaprutil1-dbd-sqlite3 1.6.3-1.1+b1 ii libaprutil1-ldap 1.6.3-1.1+b1 ii libaprutil1t64 [libaprutil1] 1.6.3-1.1+b1 ii libbrotli11.1.0-2+b3 ii libc6 2.37-15.1 ii libcrypt1 1:4.4.36-4 ii libcurl4t64 [libcurl4]8.6.0-4 ii libjansson4 2.14-2+b2 ii libldap-2.5-0 2.5.16+dfsg-2 ii liblua5.3-0 5.3.6-2+b2 ii libnghttp2-14 1.59.0-1+b1 ii libpcre2-8-0 10.42-4+b1 ii libssl3t64 [libssl3] 3.1.5-1.1 ii libxml2 2.9.14+dfsg-1.3+b2 ii perl 5.38.2-3.2 ii zlib1g1:1.3.dfsg-3.1 apache2-bin recommends no packages. Versions of packages apache2-bin suggests: pn apache2-doc pn apache2-suexec-pristine | apache2-suexec-custom ii firefox-esr [www-browser]115.8.0esr-1+b1 ii lynx [www-browser] 2.9.0rel.0-2+b1 ii surf [www-browser] 2.1+git20221016-6+b1 ii w3m [www-browser]0.5.3+git20230121-2+b3 Versions of packages apache2 depends on: ii apache2-data 2.4.58-1 ii apache2-utils2.4.58-1+b1 ii init-system-helpers 1.66 ii media-types 10.1.0 ii perl 5.38.2-3.2 ii procps 2:4.0.4-4 Versions of packages apache2 recommends: ii ssl-cert 1.1.2 Versions of packages apache2 suggests: pn apache2-doc pn apache2-suexec-pristine | apache2-suexec-custom ii firefox-esr [www-browser]115.8.0esr-1+b1 ii lynx [www-browser] 2.9.0rel.0-2+b1 ii surf [www-browser] 2.1+git20221016-6+b1 ii w3m [www-browser]0.5.3+git20230121-2+b3 Versions of packages apache2-bin is related to: ii apache2 2.4.58-1+b1 ii apache2-bin 2.4.58-1+b1 -- no debconf information -- .''`. Étienne Mollier : :' : pgp: 8f91 b227 c7d6 f2b1 948c 8236 793c f67e 8f0d 11da `. `' sent from /dev/pts/4, please excuse my verbosity `-on air: Antony Kalugin - Key signature.asc Description: PGP signature --- End Message --- --- Begin Message --- version: 1.6.3-2 Am 17.03.24 um 15:19 schrieb
Processing of apr-util_1.6.3-2_source.changes
apr-util_1.6.3-2_source.changes uploaded successfully to localhost along with the files: apr-util_1.6.3-2.dsc apr-util_1.6.3-2.debian.tar.xz apr-util_1.6.3-2_source.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)
Processed: tagging 1067035, tagging 1066821
Processing commands for cont...@bugs.debian.org: > tags 1067035 + pending Bug #1067035 [libaprutil1t64] apache2-bin: rebuild for the 64-bit time_t migration is uninstallable Added tag(s) pending. > tags 1066821 + pending Bug #1066821 {Done: Stefan Fritsch } [src:apr-util] apr-util: FTBFS on arm{el,hf}: /bin/bash: line 3: 3132384 Segmentation fault LD_LIBRARY_PATH="`echo "../crypto/.libs:../dbm/.libs:../dbd/.libs:../ldap/.libs:$LD_LIBRARY_PATH" | sed -e 's/::*$//'`" ./$prog -v Added tag(s) pending. > thanks Stopping processing here. Please contact me if you need assistance. -- 1066821: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1066821 1067035: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1067035 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#1066821: marked as done (apr-util: FTBFS on arm{el,hf}: /bin/bash: line 3: 3132384 Segmentation fault LD_LIBRARY_PATH="`echo "../crypto/.libs:../dbm/.libs:../dbd/.libs:../ldap/.libs:$LD_LIBRA
Your message dated Mon, 18 Mar 2024 19:49:13 + with message-id and subject line Bug#1066821: fixed in apr-util 1.6.3-2 has caused the Debian Bug report #1066821, regarding apr-util: FTBFS on arm{el,hf}: /bin/bash: line 3: 3132384 Segmentation fault LD_LIBRARY_PATH="`echo "../crypto/.libs:../dbm/.libs:../dbd/.libs:../ldap/.libs:$LD_LIBRARY_PATH" | sed -e 's/::*$//'`" ./$prog -v to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1066821: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1066821 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Source: apr-util Version: 1.6.3-1.1 Severity: serious Tags: ftbfs Justification: fails to build from source (but built successfully in the past) X-Debbugs-Cc: sramac...@debian.org https://buildd.debian.org/status/fetch.php?pkg=apr-util=armhf=1.6.3-1.1=1709086833=0 testldap: SUCCESS testdbd : SUCCESS testdate: SUCCESS testmemcache: Error 111 occurred attempting to reach memcached on localhost:11211. Skipping apr_memcache tests... SUCCESS testredis : Error 111 occurred attempting to reach Redis on localhost:6379. Skipping apr_redis tests... SUCCESS testxml : SUCCESS testxlate : SUCCESS testrmm : SUCCESS testdbm : BDB1565 DB->put: method not permitted before handle's open method /bin/bash: line 3: 3132384 Segmentation fault LD_LIBRARY_PATH="`echo "../crypto/.libs:../dbm/.libs:../dbd/.libs:../ldap/.libs:$LD_LIBRARY_PATH" | sed -e 's/::*$//'`" ./$prog -v Programs failed: testall make[2]: *** [Makefile:60: check] Error 139 Cheers -- Sebastian Ramacher --- End Message --- --- Begin Message --- Source: apr-util Source-Version: 1.6.3-2 Done: Stefan Fritsch We believe that the bug you reported is fixed in the latest version of apr-util, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 1066...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch (supplier of updated apr-util package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 18 Mar 2024 20:21:56 +0100 Source: apr-util Architecture: source Version: 1.6.3-2 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Stefan Fritsch Closes: 1066821 Changes: apr-util (1.6.3-2) unstable; urgency=medium . * Incorporate NMU. Thanks to all the 64-bit time_t transition people. * Bump libapr1-dev Build-Dep to 1.7.2-3.2. Hopefully closes: #1066821 * Add more 64-bit time_t patches from Simon McVittie. Thanks. Closes: #1066821 Checksums-Sha1: e54da49c48a25eaa47c11c1649122dde4996948d 2790 apr-util_1.6.3-2.dsc 0a3ba0d15d92ea2a6b4743fa84bcdfcbb9dfb0ac 341028 apr-util_1.6.3-2.debian.tar.xz 8e751c5f1abc1d5eeb09c253c51e5eca51d74d0d 8920 apr-util_1.6.3-2_source.buildinfo Checksums-Sha256: ec0980c33c48706d28ee3894c543f2f2fe4a6e0f4b7b233f6448205934b2079f 2790 apr-util_1.6.3-2.dsc 5dd4abc7e74af270900b953523ee50ebc44bb794fba64a08111f3c1ac9942fb4 341028 apr-util_1.6.3-2.debian.tar.xz 0060c54212516ee4f898e3dceff0c339586f6a10f645866b91e28f732a9f1914 8920 apr-util_1.6.3-2_source.buildinfo Files: 2bd4a9312509ac42206b46bbbc4d60ff 2790 libs optional apr-util_1.6.3-2.dsc 132c383916b36665b64db1820a859540 341028 libs optional apr-util_1.6.3-2.debian.tar.xz ef4a4a49dd973d32bcce3d1e9f688cbd 8920 libs optional apr-util_1.6.3-2_source.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEOpiNza8JqByyYYsxxodfNUHO/eAFAmX4lSIACgkQxodfNUHO /eBDZA//Qc15ucwrvI0uXk3SqY/sywk0Jac/wGxx5nUrnM1gYoU1jK1JIsJ5ade3 DqwzxVrOZs/Q5/OT/B2thDmW07WFvWyud2LZeGMipc0ztBRzkB6mRPH5uonLR1/y ACTUuDfPdfiDxdNx5i943FRNe4Yiqk121LMdFzrRfFkbtb9ZlGjZdvBbPjN8U1Bf 9rEfRA8UCnemGMyczI2TJY2lOWix6rbBspHAqCoCxOMazLRRdH8QPYbCCfmBal6K 3yP/ZHA/utVENUOU3QfmmqNHY0/Kkekqr7SIJVjAeFJRQUDoABp0k4FkyxZuHA5H g9iYM71txAsrZ6Cup+ez6WJlbYRcswOGeB23BhCAjlyGza8deLkd8KeFFa2h1fh0 alYIf4WHOtal5dGNPx6LPvK4uWaTUSqqwG7WeoCZA5U43pDPj9P6G6nzzNaX+NPg 7eF4JzZ0w9/8sD9eB4GxoE22sLvgBFeswc7GRG1iOLmZuRPd6csFjsGRPqVwI+o5 Da6W7uNjlcjDIR4t4BA77j3n40eXCHTACeoLsJZ9/NuTyq3lkv/62WyaiQrB3T9R
apr-util_1.6.3-2_source.changes ACCEPTED into unstable
Thank you for your contribution to Debian. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 18 Mar 2024 20:21:56 +0100 Source: apr-util Architecture: source Version: 1.6.3-2 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Stefan Fritsch Closes: 1066821 Changes: apr-util (1.6.3-2) unstable; urgency=medium . * Incorporate NMU. Thanks to all the 64-bit time_t transition people. * Bump libapr1-dev Build-Dep to 1.7.2-3.2. Hopefully closes: #1066821 * Add more 64-bit time_t patches from Simon McVittie. Thanks. Closes: #1066821 Checksums-Sha1: e54da49c48a25eaa47c11c1649122dde4996948d 2790 apr-util_1.6.3-2.dsc 0a3ba0d15d92ea2a6b4743fa84bcdfcbb9dfb0ac 341028 apr-util_1.6.3-2.debian.tar.xz 8e751c5f1abc1d5eeb09c253c51e5eca51d74d0d 8920 apr-util_1.6.3-2_source.buildinfo Checksums-Sha256: ec0980c33c48706d28ee3894c543f2f2fe4a6e0f4b7b233f6448205934b2079f 2790 apr-util_1.6.3-2.dsc 5dd4abc7e74af270900b953523ee50ebc44bb794fba64a08111f3c1ac9942fb4 341028 apr-util_1.6.3-2.debian.tar.xz 0060c54212516ee4f898e3dceff0c339586f6a10f645866b91e28f732a9f1914 8920 apr-util_1.6.3-2_source.buildinfo Files: 2bd4a9312509ac42206b46bbbc4d60ff 2790 libs optional apr-util_1.6.3-2.dsc 132c383916b36665b64db1820a859540 341028 libs optional apr-util_1.6.3-2.debian.tar.xz ef4a4a49dd973d32bcce3d1e9f688cbd 8920 libs optional apr-util_1.6.3-2_source.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEOpiNza8JqByyYYsxxodfNUHO/eAFAmX4lSIACgkQxodfNUHO /eBDZA//Qc15ucwrvI0uXk3SqY/sywk0Jac/wGxx5nUrnM1gYoU1jK1JIsJ5ade3 DqwzxVrOZs/Q5/OT/B2thDmW07WFvWyud2LZeGMipc0ztBRzkB6mRPH5uonLR1/y ACTUuDfPdfiDxdNx5i943FRNe4Yiqk121LMdFzrRfFkbtb9ZlGjZdvBbPjN8U1Bf 9rEfRA8UCnemGMyczI2TJY2lOWix6rbBspHAqCoCxOMazLRRdH8QPYbCCfmBal6K 3yP/ZHA/utVENUOU3QfmmqNHY0/Kkekqr7SIJVjAeFJRQUDoABp0k4FkyxZuHA5H g9iYM71txAsrZ6Cup+ez6WJlbYRcswOGeB23BhCAjlyGza8deLkd8KeFFa2h1fh0 alYIf4WHOtal5dGNPx6LPvK4uWaTUSqqwG7WeoCZA5U43pDPj9P6G6nzzNaX+NPg 7eF4JzZ0w9/8sD9eB4GxoE22sLvgBFeswc7GRG1iOLmZuRPd6csFjsGRPqVwI+o5 Da6W7uNjlcjDIR4t4BA77j3n40eXCHTACeoLsJZ9/NuTyq3lkv/62WyaiQrB3T9R LHP+kEhznsxOmYAZS7YUd7HBRRj6ZhyaMYn+2rmrXfsq4cDqzD+zkPhq7g/N0AlT GMzFjniJz58Dcuy4mml9AJ1L8rk1Nmpc68w3Qa9KymF6faAfVY8= =N8kz -END PGP SIGNATURE- pgpEAXh1vFh10.pgp Description: PGP signature
Bug#1066821: apr-util: FTBFS on arm{el,hf}: /bin/bash: line 3: 3132384 Segmentation fault LD_LIBRARY_PATH="`echo "../crypto/.libs:../dbm/.libs:../dbd/.libs:../ldap/.libs:$LD_LIBRARY_PATH" | sed -e 's/
Am 18.03.24 um 19:30 schrieb Stefan Fritsch: Am 13.03.24 um 22:32 schrieb Sebastian Ramacher: Source: apr-util Version: 1.6.3-1.1 Severity: serious Tags: ftbfs Justification: fails to build from source (but built successfully in the past) X-Debbugs-Cc: sramac...@debian.org https://buildd.debian.org/status/fetch.php?pkg=apr-util=armhf=1.6.3-1.1=1709086833=0 It looks to me like it tried to use a non 64bit time_t libapr1 during build, which does not work because libapr1 changes abi with the time_t transition. Adding a versioned build-depends should help. I will check later. Unfortunately, apr-util build-deps are uninstallable on armhf/armel right now due to postgres not being built for 64bit time_t. So, there is no easy way to test this. I will upload anyway.
Bug#1066821: apr-util: FTBFS on arm{el,hf}: /bin/bash: line 3: 3132384 Segmentation fault LD_LIBRARY_PATH="`echo "../crypto/.libs:../dbm/.libs:../dbd/.libs:../ldap/.libs:$LD_LIBRARY_PATH" | sed -e 's/
Am 13.03.24 um 22:32 schrieb Sebastian Ramacher: Source: apr-util Version: 1.6.3-1.1 Severity: serious Tags: ftbfs Justification: fails to build from source (but built successfully in the past) X-Debbugs-Cc: sramac...@debian.org https://buildd.debian.org/status/fetch.php?pkg=apr-util=armhf=1.6.3-1.1=1709086833=0 It looks to me like it tried to use a non 64bit time_t libapr1 during build, which does not work because libapr1 changes abi with the time_t transition. Adding a versioned build-depends should help. I will check later. testldap: SUCCESS testdbd : SUCCESS testdate: SUCCESS testmemcache: Error 111 occurred attempting to reach memcached on localhost:11211. Skipping apr_memcache tests... SUCCESS testredis : Error 111 occurred attempting to reach Redis on localhost:6379. Skipping apr_redis tests... SUCCESS testxml : SUCCESS testxlate : SUCCESS testrmm : SUCCESS testdbm : BDB1565 DB->put: method not permitted before handle's open method /bin/bash: line 3: 3132384 Segmentation fault LD_LIBRARY_PATH="`echo "../crypto/.libs:../dbm/.libs:../dbd/.libs:../ldap/.libs:$LD_LIBRARY_PATH" | sed -e 's/::*$//'`" ./$prog -v Programs failed: testall make[2]: *** [Makefile:60: check] Error 139 Cheers
Bug#1067104: server stalls: AH00046: child process 2876749 still did not exit, sending a SIGKILL
Package: apache2 Version: 2.4.57-2 Severity: important Server was working just fine for years and recently started to stall completely after 3-7 days of functioning normally. error logs get filled up first with AH03490 and then eventually with AH00045 messages: [Sun Mar 17 02:26:01.353381 2024] [mpm_event:error] [pid 2649373:tid 139846579189632] AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit. ... [Sun Mar 17 22:00:42.201774 2024] [mpm_event:error] [pid 2649373:tid 139846579189632] AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit. [Sun Mar 17 22:00:42.995574 2024] [mpm_event:error] [pid 2649373:tid 139846579189632] AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit. [Sun Mar 17 22:00:42.998488 2024] [mpm_event:notice] [pid 2649373:tid 139846579189632] AH00492: caught SIGWINCH, shutting down gracefully [Sun Mar 17 22:00:46.358981 2024] [core:warn] [pid 2649373:tid 139846579189632] AH00045: child process 2649375 still did not exit, sending a SIGTERM [Sun Mar 17 22:00:46.359064 2024] [core:warn] [pid 2649373:tid 139846579189632] AH00045: child process 2649376 still did not exit, sending a SIGTERM until I restart the beast. $> grep AH03490 error.log | wc -l 70404 $> grep AH00045 error.log | wc -l 48 Server has a number of virtualserver's configured. Seems has started about a month ago $> for e in error.log*; do zgrep AH03490 $e| head -n 1 ; done [Sun Mar 17 02:26:01.353381 2024] [mpm_event:error] [pid 2649373:tid 139846579189632] AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit. [Mon Mar 11 16:47:41.181900 2024] [mpm_event:error] [pid 1172065:tid 140192799893376] AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit. [Tue Mar 05 00:00:12.307813 2024] [mpm_event:error] [pid 2686718:tid 139644504094592] AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit. [Sun Feb 25 03:23:33.382200 2024] [mpm_event:error] [pid 2686718:tid 139644504094592] AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit. [Sat Feb 24 01:02:29.148887 2024] [mpm_event:error] [pid 2686718:tid 139644504094592] AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit. [Tue Feb 13 14:28:00.653754 2024] [mpm_event:error] [pid 2434335:tid 140300052350848] AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit. and likely after I configured some wsgi $> zgrep apache /var/log/dpkg.log.* | grep 2024 /var/log/dpkg.log.2.gz:2024-02-02 12:34:23 install libapache2-mod-python:amd64 3.5.0+git20211031.e6458ec-1+deb12u1 /var/log/dpkg.log.2.gz:2024-02-02 12:34:23 status half-installed libapache2-mod-python:amd64 3.5.0+git20211031.e6458ec-1+deb12u1 /var/log/dpkg.log.2.gz:2024-02-02 12:34:23 status unpacked libapache2-mod-python:amd64 3.5.0+git20211031.e6458ec-1+deb12u1 /var/log/dpkg.log.2.gz:2024-02-02 12:34:23 configure libapache2-mod-python:amd64 3.5.0+git20211031.e6458ec-1+deb12u1 /var/log/dpkg.log.2.gz:2024-02-02 12:34:23 status unpacked libapache2-mod-python:amd64 3.5.0+git20211031.e6458ec-1+deb12u1 /var/log/dpkg.log.2.gz:2024-02-02 12:34:23 status half-configured libapache2-mod-python:amd64 3.5.0+git20211031.e6458ec-1+deb12u1 /var/log/dpkg.log.2.gz:2024-02-02 12:34:25 status installed libapache2-mod-python:amd64 3.5.0+git20211031.e6458ec-1+deb12u1 /var/log/dpkg.log.2.gz:2024-02-02 12:51:18 status installed libapache2-mod-python:amd64 3.5.0+git20211031.e6458ec-1+deb12u1 /var/log/dpkg.log.2.gz:2024-02-02 12:51:19 remove libapache2-mod-python:amd64 3.5.0+git20211031.e6458ec-1+deb12u1 /var/log/dpkg.log.2.gz:2024-02-02 12:51:19 status half-configured libapache2-mod-python:amd64 3.5.0+git20211031.e6458ec-1+deb12u1 /var/log/dpkg.log.2.gz:2024-02-02 12:51:21 status half-installed libapache2-mod-python:amd64 3.5.0+git20211031.e6458ec-1+deb12u1 /var/log/dpkg.log.2.gz:2024-02-02 12:51:21 status config-files libapache2-mod-python:amd64 3.5.0+git20211031.e6458ec-1+deb12u1 /var/log/dpkg.log.2.gz:2024-02-02 12:52:11 install libapache2-mod-wsgi-py3:amd64 4.9.4-1+b2 /var/log/dpkg.log.2.gz:2024-02-02 12:52:11 status half-installed libapache2-mod-wsgi-py3:amd64 4.9.4-1+b2 /var/log/dpkg.log.2.gz:2024-02-02 12:52:11 status unpacked libapache2-mod-wsgi-py3:amd64 4.9.4-1+b2 /var/log/dpkg.log.2.gz:2024-02-02 12:52:11 configure libapache2-mod-wsgi-py3:amd64 4.9.4-1+b2 /var/log/dpkg.log.2.gz:2024-02-02 12:52:11 status unpacked libapache2-mod-wsgi-py3:amd64 4.9.4-1+b2 /var/log/dpkg.log.2.gz:2024-02-02 12:52:11 status half-configured libapache2-mod-wsgi-py3:amd64 4.9.4-1+b2 /var/log/dpkg.log.2.gz:2024-02-02 12:52:14 status installed libapache2-mod-wsgi-py3:amd64
Re: Bug#1067035: apache2-bin: rebuild for the 64-bit time_t migration is uninstallable
Hi Simon, Simon McVittie, on 2024-03-17: > I believe the attached patches should fix this (untested). After fixing > this in apr-util, apache2 will need a binNMU (or a re-upload). Thanks for your patches, I confirm they resolve the dependency issue after a rebuild of apache2. libaprutil164 without 't' is no more present in the dependencies. Have a nice day, :) -- .''`. Étienne Mollier : :' : pgp: 8f91 b227 c7d6 f2b1 948c 8236 793c f67e 8f0d 11da `. `' sent from /dev/pts/1, please excuse my verbosity `- signature.asc Description: PGP signature
Processed: Re: Bug#1067035: apache2-bin: rebuild for the 64-bit time_t migration is uninstallable
Processing control commands: > reassign -1 libaprutil1t64 Bug #1067035 [apache2-bin] apache2-bin: rebuild for the 64-bit time_t migration is uninstallable Bug reassigned from package 'apache2-bin' to 'libaprutil1t64'. No longer marked as found in versions apache2/2.4.58-1. Ignoring request to alter fixed versions of bug #1067035 to the same values previously set > found -1 1.6.3-1.1 Bug #1067035 [libaprutil1t64] apache2-bin: rebuild for the 64-bit time_t migration is uninstallable Marked as found in versions apr-util/1.6.3-1.1. > affects -1 + apache2-bin Bug #1067035 [libaprutil1t64] apache2-bin: rebuild for the 64-bit time_t migration is uninstallable Added indication that 1067035 affects apache2-bin > tags -1 + patch Bug #1067035 [libaprutil1t64] apache2-bin: rebuild for the 64-bit time_t migration is uninstallable Added tag(s) patch. -- 1067035: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1067035 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Re: Bug#1067035: apache2-bin: rebuild for the 64-bit time_t migration is uninstallable
Control: reassign -1 libaprutil1t64 Control: found -1 1.6.3-1.1 Control: affects -1 + apache2-bin Control: tags -1 + patch On Sun, 17 Mar 2024 at 12:01:38 +0100, Étienne Mollier wrote: > libaprutil164 (note the missing 't' for "t64") is not available > in unstable. The dependency looks typoed and duplicated, as > libaprutil1t64 (>= 1.6.0) is also present as needed in the > Depends field, If I'm reading correctly, this is a bug in the NMU of libaprutil1t64 with the rename for 64-bit time_t, not a bug in apache2-bin. The .symbols file in libaprutil1t64 generates dependencies on a nonexistent package name if functions related to LDAP or database functionality are used. I believe the attached patches should fix this (untested). After fixing this in apr-util, apache2 will need a binNMU (or a re-upload). I have not attempted to fix apr-util's other RC bug, #1066821. smcv >From e36a8c4784278ccfb32d112b57cd2260fedb2e3c Mon Sep 17 00:00:00 2001 From: Simon McVittie Date: Sun, 17 Mar 2024 13:21:29 + Subject: [PATCH 2/3] d/libaprutil1t64.symbols: Fix name of t64 binary package It's libaprutil1t64 (with the "t"), not libaprutil164. Closes: #1067035 --- debian/libaprutil1t64.symbols | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/debian/libaprutil1t64.symbols b/debian/libaprutil1t64.symbols index 8468461..0b6493b 100644 --- a/debian/libaprutil1t64.symbols +++ b/debian/libaprutil1t64.symbols @@ -1,6 +1,6 @@ libaprutil-1.so.0 libaprutil1t64 #MINVER# -| libaprutil1-ldap , libaprutil164 #MINVER# -| libaprutil1-dbd-sqlite3|libaprutil1-dbd-mysql|libaprutil1-dbd-odbc|libaprutil1-dbd-pgsql|libaprutil1-dbd-freetds , libaprutil164 #MINVER# +| libaprutil1-ldap , libaprutil1t64 #MINVER# +| libaprutil1-dbd-sqlite3|libaprutil1-dbd-mysql|libaprutil1-dbd-odbc|libaprutil1-dbd-pgsql|libaprutil1-dbd-freetds , libaprutil1t64 #MINVER# _crypt_blowfish_rn@Base 1.5.0 _crypt_gensalt_blowfish_rn@Base 1.5.0 _crypt_output_magic@Base 1.5.0 -- 2.43.0 >From 1ea1785071067c436b9e0b1938fbc2553e849d3f Mon Sep 17 00:00:00 2001 From: Simon McVittie Date: Sun, 17 Mar 2024 13:22:27 + Subject: [PATCH 3/3] d/libaprutil1t64.lintian-overrides: Remove unnecessary lintian override --- debian/libaprutil1t64.lintian-overrides | 1 - 1 file changed, 1 deletion(-) diff --git a/debian/libaprutil1t64.lintian-overrides b/debian/libaprutil1t64.lintian-overrides index 90a6b4d..fb2f313 100644 --- a/debian/libaprutil1t64.lintian-overrides +++ b/debian/libaprutil1t64.lintian-overrides @@ -1,3 +1,2 @@ libaprutil1t64: symbols-declares-dependency-on-other-package libaprutil1t64: package-name-doesnt-match-sonames libaprutil-1-0 -libaprutil1t64: package-name-doesnt-match-sonames libaprutil1 -- 2.43.0
Bug#1067035: apache2-bin: rebuild for the 64-bit time_t migration is uninstallable
Package: apache2-bin Version: 2.4.58-1+b2 Severity: serious Justification: uninstallable Dear Maintainer, Attempting to upgrade apache2-bin from rebuild 2.4.58-1+b1 to the rebuild 2.4.58-1+b2 leads to the following error: $ sudo apt upgrade apache2-bin Reading package lists... Done Building dependency tree... Done Reading state information... Done Calculating upgrade... Done Some packages could not be installed. This may mean that you have requested an impossible situation or if you are using the unstable distribution that some required packages have not yet been created or been moved out of Incoming. The following information may help to resolve the situation: The following packages have unmet dependencies: apache2-bin : Depends: libaprutil164 (>= 1.2.7+dfsg) but it is not installable E: Broken packages libaprutil164 (note the missing 't' for "t64") is not available in unstable. The dependency looks typoed and duplicated, as libaprutil1t64 (>= 1.6.0) is also present as needed in the Depends field, Otherwise, have a nice Sunday, :) Étienne. -- Package-specific info: -- System Information: Debian Release: trixie/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 6.7.9-amd64 (SMP w/12 CPU threads; PREEMPT) Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages apache2-bin depends on: ii libapr1t64 [libapr1] 1.7.2-3.2 ii libaprutil1-dbd-sqlite3 1.6.3-1.1+b1 ii libaprutil1-ldap 1.6.3-1.1+b1 ii libaprutil1t64 [libaprutil1] 1.6.3-1.1+b1 ii libbrotli11.1.0-2+b3 ii libc6 2.37-15.1 ii libcrypt1 1:4.4.36-4 ii libcurl4t64 [libcurl4]8.6.0-4 ii libjansson4 2.14-2+b2 ii libldap-2.5-0 2.5.16+dfsg-2 ii liblua5.3-0 5.3.6-2+b2 ii libnghttp2-14 1.59.0-1+b1 ii libpcre2-8-0 10.42-4+b1 ii libssl3t64 [libssl3] 3.1.5-1.1 ii libxml2 2.9.14+dfsg-1.3+b2 ii perl 5.38.2-3.2 ii zlib1g1:1.3.dfsg-3.1 apache2-bin recommends no packages. Versions of packages apache2-bin suggests: pn apache2-doc pn apache2-suexec-pristine | apache2-suexec-custom ii firefox-esr [www-browser]115.8.0esr-1+b1 ii lynx [www-browser] 2.9.0rel.0-2+b1 ii surf [www-browser] 2.1+git20221016-6+b1 ii w3m [www-browser]0.5.3+git20230121-2+b3 Versions of packages apache2 depends on: ii apache2-data 2.4.58-1 ii apache2-utils2.4.58-1+b1 ii init-system-helpers 1.66 ii media-types 10.1.0 ii perl 5.38.2-3.2 ii procps 2:4.0.4-4 Versions of packages apache2 recommends: ii ssl-cert 1.1.2 Versions of packages apache2 suggests: pn apache2-doc pn apache2-suexec-pristine | apache2-suexec-custom ii firefox-esr [www-browser]115.8.0esr-1+b1 ii lynx [www-browser] 2.9.0rel.0-2+b1 ii surf [www-browser] 2.1+git20221016-6+b1 ii w3m [www-browser]0.5.3+git20230121-2+b3 Versions of packages apache2-bin is related to: ii apache2 2.4.58-1+b1 ii apache2-bin 2.4.58-1+b1 -- no debconf information -- .''`. Étienne Mollier : :' : pgp: 8f91 b227 c7d6 f2b1 948c 8236 793c f67e 8f0d 11da `. `' sent from /dev/pts/4, please excuse my verbosity `-on air: Antony Kalugin - Key signature.asc Description: PGP signature
Processed: reassign 1067031 to src:apache2
Processing commands for cont...@bugs.debian.org: > reassign 1067031 src:apache2 Bug #1067031 [src:apache2-bin] apache2-bin: Probably wrong dependency. Warning: Unknown package 'src:apache2-bin' Bug reassigned from package 'src:apache2-bin' to 'src:apache2'. No longer marked as found in versions apache2-bin/2.4.58-1. Ignoring request to alter fixed versions of bug #1067031 to the same values previously set > thanks Stopping processing here. Please contact me if you need assistance. -- 1067031: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1067031 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
reassign 1067031 to src:apache2
reassign 1067031 src:apache2 thanks signature.asc Description: PGP signature
Bug#1064950: marked as done (apache2: (Legacy?) "Depends: apache2-data (= ${source:Version})," in debian/control breaks binNMU builds.)
Your message dated Wed, 13 Mar 2024 22:29:55 +0100 with message-id and subject line Re: AW: AW: Bug#1064950: apache2: (Legacy?) "Depends: apache2-data (= ${source:Version})," in debian/control breaks binNMU builds. has caused the Debian Bug report #1064950, regarding apache2: (Legacy?) "Depends: apache2-data (= ${source:Version})," in debian/control breaks binNMU builds. to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1064950: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064950 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Subject: apache2: (Legacy?) "Depends: apache2-data (= ${source:Version})," in debian/control breaks binNMU builds. Source: apache2 X-Debbugs-Cc: christof.warl...@siemens.com Version: 2.4.57-2 Severity: serious Justification: fails to build from source (but built successfully in the past) Tags: patch ftbfs Dear Maintainer, (re)building apache2 as binNMU (i.e. with appending "+b to the package version") works, but installation of the resulting apache2 package fails due to the following dependency in debian/control: Depends: apache2-data (= ${source:Version}), It causes apt-get to look for the dependency "apache2-data" (= 2.4.57-2) which does not exist in the newly built packages. Instead, the dependency should be satisfied by "apache2-data (= 2.4.57-2+b)". The folliwing patch fixes the issue: diff --git a/debian/control b/debian/control index 2eddc60..31121fa 100644 --- a/debian/control +++ b/debian/control @@ -34,7 +34,7 @@ Rules-Requires-Root: binary-targets Package: apache2 Architecture: any Depends: apache2-bin (= ${binary:Version}), - apache2-data (= ${source:Version}), + apache2-data (= ${binary:Version}), apache2-utils (= ${binary:Version}), lsb-base, media-types, Please consider applying the patch. Best regards, Christof Warlich P.S.: Note that the information below, being produced by "reportbug", is irrelevant as I executed "reportbug" on WSL2 on Windows 10. The actual Debian version is "bookworm". -- System Information: Debian Release: bookworm/sid APT prefers jammy-updates APT policy: (500, 'jammy-updates'), (500, 'jammy-security'), (500, 'jammy'), (100, 'jammy-backports') Architecture: amd64 (x86_64) Kernel: Linux 5.10.102.1-microsoft-standard-WSL2+ (SMP w/16 CPU threads) Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) --- End Message --- --- Begin Message --- On 2024-03-04 12:33:39 +, Warlich, Christof wrote: > Sebastian Ramacher wrote: > > Christof Warlich wrote: > > > If this assumption is true, then why is the Debian build system (i.e. > > > dpkg-buildpackage) not smart enough to simply ignore an existing +bX > > > extension for Architecture: all binary packages? IMHO, this would > > > simplify matters, as it would have avoided the pitfall that I stumbled > > > into altogether. > > > > binNMUs are handled a layer above. sbuild will pass the correct options to > > dpkg-buildpackage to build binNMUs. If you are interested in having binNMU > > builds for your own infrastructure, you'll probably need to take a look at > > the sbuild source to see how it is implemented. > > Ok, so I'd better start using sbuild instead. Again, thanks for the valuable > info and your time. Closing this bug. Cheers -- Sebastian Ramacher--- End Message ---
Bug#1066821: apr-util: FTBFS on arm{el,hf}: /bin/bash: line 3: 3132384 Segmentation fault LD_LIBRARY_PATH="`echo "../crypto/.libs:../dbm/.libs:../dbd/.libs:../ldap/.libs:$LD_LIBRARY_PATH" | sed -
Source: apr-util Version: 1.6.3-1.1 Severity: serious Tags: ftbfs Justification: fails to build from source (but built successfully in the past) X-Debbugs-Cc: sramac...@debian.org https://buildd.debian.org/status/fetch.php?pkg=apr-util=armhf=1.6.3-1.1=1709086833=0 testldap: SUCCESS testdbd : SUCCESS testdate: SUCCESS testmemcache: Error 111 occurred attempting to reach memcached on localhost:11211. Skipping apr_memcache tests... SUCCESS testredis : Error 111 occurred attempting to reach Redis on localhost:6379. Skipping apr_redis tests... SUCCESS testxml : SUCCESS testxlate : SUCCESS testrmm : SUCCESS testdbm : BDB1565 DB->put: method not permitted before handle's open method /bin/bash: line 3: 3132384 Segmentation fault LD_LIBRARY_PATH="`echo "../crypto/.libs:../dbm/.libs:../dbd/.libs:../ldap/.libs:$LD_LIBRARY_PATH" | sed -e 's/::*$//'`" ./$prog -v Programs failed: testall make[2]: *** [Makefile:60: check] Error 139 Cheers -- Sebastian Ramacher
Processing of apr_1.7.2-3.2_source.changes
apr_1.7.2-3.2_source.changes uploaded successfully to localhost along with the files: apr_1.7.2-3.2.dsc apr_1.7.2-3.2.debian.tar.xz apr_1.7.2-3.2_source.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)
apr_1.7.2-3.2_source.changes ACCEPTED into unstable
Thank you for your contribution to Debian. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 08 Mar 2024 19:11:28 + Source: apr Architecture: source Version: 1.7.2-3.2 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Steve Langasek Changes: apr (1.7.2-3.2) unstable; urgency=medium . * Non-maintainer upload. * Fix symbols files which are in a non-standard location. Checksums-Sha1: fb88873fd02f6cb033899f0b060aa89f4509d0d1 2323 apr_1.7.2-3.2.dsc 2afdfaa223f31b8a53e32576ca32099719f93923 54572 apr_1.7.2-3.2.debian.tar.xz 3aa990b1e6ec1c3271deee5649296e06d75915ac 6624 apr_1.7.2-3.2_source.buildinfo Checksums-Sha256: e6beb42d176608fce031f271017b650658c633f5e31080047541b9549ee2715a 2323 apr_1.7.2-3.2.dsc 0758509e6cda3f6f3f367e84e8ef1c05d58450936f78f4163f22b0df8a663a6c 54572 apr_1.7.2-3.2.debian.tar.xz d38edbb4561165638906f9400f639605e5377ecebfeadab3daca4c6b5174695b 6624 apr_1.7.2-3.2_source.buildinfo Files: 6ac8fd144b7f5db1d7802d5e9134036f 2323 libs optional apr_1.7.2-3.2.dsc c9647dce37ec9a3508da952ea1dd2af5 54572 libs optional apr_1.7.2-3.2.debian.tar.xz bb157860a4bdc6b47e63fa49418a8ccd 6624 libs optional apr_1.7.2-3.2_source.buildinfo -BEGIN PGP SIGNATURE- iQJGBAEBCgAwFiEErEg/aN5yj0PyIC/KVo0w8yGyEz0FAmXrYzISHHZvcmxvbkBk ZWJpYW4ub3JnAAoJEFaNMPMhshM9DhkP+QFBy+jsislWylMJnb34Cv2NrEpKRnHD vp+OA01hIKiNz834LZDq6/bza8A1RwUu208twVZzm5dl+yAlOwSDDOOzJjjtnu7z XOOEHEsNGlkgsksdsO6bSGxahePuAo1QRG+lZL7O5iXWsqRFQZcThkmTWFyMJuBr /lqlXsVDmci560Binc3KTpAXSAJgj3vhwdtGYxh68DRHSrU52CBUABH+AccFnDA7 kbZqUu01U2IsI3ab9XN6Ddr2nqh0r3qjZsy3CYNQtTfFwrkdSlt/xDWq3iGefLpm KJiiTaHJSB+uqN4MRfqt85ZtNA46+eGHNnH/WIwkmtCnA4vAlOTE3K1IYDSohwa6 CYz0b7oUdaMeuaOfM9pGkVDeWnM+sJ4KiPi3cI/C/i4ZGyPZI38BSJ7ALqEIP8/z hu1cLqU/CRbtVt1f+XSo9lpUmDvEeYDaNSg4aSoPufeyOU7KCbYb3bkcm6apO2mn 8pWqaiDjYOyLMgUSkMCE5EpewFwb9dTCQviZaw6EiAGQBs8GGSgqXW8bJr5U/GAp hEjzfSkd9sMy2uCQhYxj/ZAVPwHadzIO2hqCBxbYWQ/kG11aBtZzuXtM4/vnqqRX 63mFopF/TzZF3+YErHRCtIwGEm8IvKDcZ9QMFu1vZp/2yqd4vw1rwhogOnYy+a6f 30rtKmxTSsEW =uX7W -END PGP SIGNATURE- pgpDri9Ve702H.pgp Description: PGP signature
Bug#1061894: apr: NMU diff for 64-bit time_t transition
The NMU was buggy because symbols files are in a non-standard location, so did not get updated by our transition scripts; with the result that packages rebuilt against libapr1t64 still had a dependency on libapr1. Please find attached a full NMU debdiff for an updated NMU. On Wed, Feb 28, 2024 at 01:17:59AM +, Steve Langasek wrote: > Dear maintainer, > > Please find attached a final version of this patch for the time_t > transition. This patch is being uploaded to unstable. > > Note that this adds a versioned build-dependency on dpkg-dev, to guard > against accidental backports with a wrong ABI. > > Thanks! > > > -- System Information: > Debian Release: trixie/sid > APT prefers unstable > APT policy: (500, 'unstable'), (1, 'experimental') > Architecture: amd64 (x86_64) > > Kernel: Linux 6.5.0-14-generic (SMP w/12 CPU threads; PREEMPT) > Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE > Locale: LANG=C, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set > Shell: /bin/sh linked to /usr/bin/dash > Init: systemd (via /run/systemd/system) > diff -Nru apr-1.7.2/debian/changelog apr-1.7.2/debian/changelog > --- apr-1.7.2/debian/changelog2023-02-26 20:51:24.0 + > +++ apr-1.7.2/debian/changelog2024-02-28 01:17:18.0 + > @@ -1,3 +1,10 @@ > +apr (1.7.2-3.1) unstable; urgency=medium > + > + * Non-maintainer upload. > + * Rename libraries for 64-bit time_t transition. Closes: #1061894 > + > + -- Steve Langasek Wed, 28 Feb 2024 01:17:18 + > + > apr (1.7.2-3) unstable; urgency=medium > >* Add more fixes for atomics from upstream, in particular for > diff -Nru apr-1.7.2/debian/control apr-1.7.2/debian/control > --- apr-1.7.2/debian/control 2023-02-03 16:18:13.0 + > +++ apr-1.7.2/debian/control 2024-02-28 01:17:18.0 + > @@ -3,7 +3,7 @@ > Priority: optional > Maintainer: Debian Apache Maintainers > Uploaders: Stefan Fritsch > -Build-Depends: debhelper-compat (= 13), > +Build-Depends: dpkg-dev (>= 1.22.5), debhelper-compat (= 13), > autoconf, > mawk, > uuid-dev, > @@ -19,7 +19,10 @@ > Homepage: https://apr.apache.org/ > Rules-Requires-Root: no > > -Package: libapr1 > +Package: libapr1t64 > +Provides: ${t64:Provides} > +Replaces: libapr1 > +Breaks: libapr1 (<< ${source:Version}) > Architecture: any > Depends: ${shlibs:Depends}, ${misc:Depends} > Pre-Depends: ${misc:Pre-Depends} > @@ -33,7 +36,7 @@ > Package: libapr1-dev > Architecture: any > Section: libdevel > -Depends: libapr1 (= ${binary:Version}), uuid-dev, ${misc:Depends}, > libsctp-dev [linux-any], python3:any > +Depends: libapr1t64 (= ${binary:Version}), uuid-dev, ${misc:Depends}, > libsctp-dev [linux-any], python3:any > Conflicts: libapr1.0-dev, libapr0-dev > Description: Apache Portable Runtime Library - Development Headers > APR is Apache's Portable Runtime Library, designed to be a support library > diff -Nru apr-1.7.2/debian/libapr1.docs apr-1.7.2/debian/libapr1.docs > --- apr-1.7.2/debian/libapr1.docs 2023-02-02 21:18:42.0 + > +++ apr-1.7.2/debian/libapr1.docs 1970-01-01 00:00:00.0 + > @@ -1 +0,0 @@ > -NOTICE > diff -Nru apr-1.7.2/debian/libapr1.install apr-1.7.2/debian/libapr1.install > --- apr-1.7.2/debian/libapr1.install 2023-02-02 21:18:42.0 + > +++ apr-1.7.2/debian/libapr1.install 1970-01-01 00:00:00.0 + > @@ -1 +0,0 @@ > -usr/lib/*/libapr-1.so.* > diff -Nru apr-1.7.2/debian/libapr1.lintian-overrides > apr-1.7.2/debian/libapr1.lintian-overrides > --- apr-1.7.2/debian/libapr1.lintian-overrides2023-02-02 > 21:18:42.0 + > +++ apr-1.7.2/debian/libapr1.lintian-overrides1970-01-01 > 00:00:00.0 + > @@ -1 +0,0 @@ > -libapr1: package-name-doesnt-match-sonames libapr-1-0 > diff -Nru apr-1.7.2/debian/libapr1.symbols apr-1.7.2/debian/libapr1.symbols > --- apr-1.7.2/debian/libapr1.symbols 2023-02-02 21:18:42.0 + > +++ apr-1.7.2/debian/libapr1.symbols 1970-01-01 00:00:00.0 + > @@ -1,2 +0,0 @@ > -here for the purpose of tricking debhelper...bwahahahaha. > - > diff -Nru apr-1.7.2/debian/libapr1t64.docs apr-1.7.2/debian/libapr1t64.docs > --- apr-1.7.2/debian/libapr1t64.docs 1970-01-01 00:00:00.0 + > +++ apr-1.7.2/debian/libapr1t64.docs 2023-02-02 21:18:42.0 + > @@ -0,0 +1 @@ > +NOTICE > diff -Nru apr-1.7.2/debian/libapr1t64.install > apr-1.7.2/debian/libapr1t64.install > --- apr-1.7.2/debian/libapr1t64.install 1970-01-01 00:00:00.0 > + > +++ apr-1.7.2/debian/libapr1t64.install 2023-02-02 21:18:42.0 > + > @@ -0,0 +1 @@ > +usr/lib/*/libapr-1.so.* > diff -Nru apr-1.7.2/debian/libapr1t64.lintian-overrides > apr-1.7.2/debian/libapr1t64.lintian-overrides > --- apr-1.7.2/debian/libapr1t64.lintian-overrides 1970-01-01 > 00:00:00.0 + > +++ apr-1.7.2/debian/libapr1t64.lintian-overrides 2024-02-28 > 01:17:10.0 + > @@ -0,0
Re: Need Some Help
On 3/7/24 20:52, Ali Ramzan wrote: Hi, I am currently using Debian Apache version on my Debian server, but when I perform a scan, I am alerted to several vulnerabilities. Specifically, the Apache version 2.4.x is vulnerable to multiple CVEs, including 2023-31122, 2023-43622, and 2023-45802. I have a couple of questions: When will Debian release Apache version 2.4.58, which resolves these vulnerabilities? Also, where can I find a link to this release and its release date? Finally, is there any way for me to fix these vulnerabilities in the meantime? Hi, version 2.4.58 doesn't contain important CVE fixes, only minor/medium. So it will be updated during a Debian point release and not in security branch. Cheers, Yadd
Need Some Help
Hi, I am currently using Debian Apache version on my Debian server, but when I perform a scan, I am alerted to several vulnerabilities. Specifically, the Apache version 2.4.x is vulnerable to multiple CVEs, including 2023-31122, 2023-43622, and 2023-45802. I have a couple of questions: When will Debian release Apache version 2.4.58, which resolves these vulnerabilities? Also, where can I find a link to this release and its release date? Finally, is there any way for me to fix these vulnerabilities in the meantime? apt policy apache2 apache2: Installed: 2.4.56-1~deb11u2 Candidate: 2.4.56-1~deb11u2 Version table: *** 2.4.56-1~deb11u2 500 500 http://ftp.de.debian.org/debian bullseye/main amd64 Packages 100 /var/lib/dpkg/status root@vcloudproxy-02:~# lsb_release -a No LSB modules are available. Distributor ID: Debian Description:Debian GNU/Linux 11 (bullseye) Release:11 Codename: bullseye Thanks Ali
Bug#1064950: AW: AW: Bug#1064950: apache2: (Legacy?) "Depends: apache2-data (= ${source:Version})," in debian/control breaks binNMU builds.
Sebastian Ramacher wrote: > Christof Warlich wrote: > > If this assumption is true, then why is the Debian build system (i.e. > > dpkg-buildpackage) not smart enough to simply ignore an existing +bX > > extension for Architecture: all binary packages? IMHO, this would simplify > > matters, as it would have avoided the pitfall that I stumbled into > > altogether. > > binNMUs are handled a layer above. sbuild will pass the correct options to > dpkg-buildpackage to build binNMUs. If you are interested in having binNMU > builds for your own infrastructure, you'll probably need to take a look at > the sbuild source to see how it is implemented. Ok, so I'd better start using sbuild instead. Again, thanks for the valuable info and your time.
Bug#1064950: AW: Bug#1064950: apache2: (Legacy?) "Depends: apache2-data (= ${source:Version})," in debian/control breaks binNMU builds.
On 2024-03-04 06:19:58 +, Warlich, Christof wrote: > Sebastian Ramacher wrote: > > This is wrong. apache2-data is an Architecture: all package, > > but apache2 is Architecture: any. So using ${source:Version} > > here is correct. Note that Debian does not currently support > > binNMUs for Architecture: all packages, so apache2-data will > > never have a +bX version. > > Thanks for that clarification. > > This is somewhat confusing for someone not doing package builds as a daily > profession: If just doing a "dpkg-buildpackage -us -uc" on the apache2 > sources _with_ the +bX extension, the apache2-data binary package _does_ get > the +bX extension as well, at least with my build, causing the issue that I > described initially. For binNMUs you'll need to pass "-B" at least, but see below. > Thus, as much as I think I've leaned so far, binNMU builds on source packages > that also produce Architekture: all binary packages must always be built > separately from sources without the +bX extension for the Architecture: all > binary packages, whereras the architecture-dependent binary packages may be > built from a source package with a +bX extension, right? Not exactly. The source packages are not changed for binNMUs. This is handled via sbuild's --binNMU-* options to set the changelog and the version. Specifically, these options imply that Arch: all binaries are not built. > If this assumption is true, then why is the Debian build system (i.e. > dpkg-buildpackage) not smart enough to simply ignore an existing +bX > extension for Architecture: all binary packages? IMHO, this would simplify > matters, as it would have avoided the pitfall that I stumbled into altogether. binNMUs are handled a layer above. sbuild will pass the correct options to dpkg-buildpackage to build binNMUs. If you are interested in having binNMU builds for your own infrastructure, you'll probably need to take a look at the sbuild source to see how it is implemented. Cheers -- Sebastian Ramacher
Bug#1064950: AW: Bug#1064950: apache2: (Legacy?) "Depends: apache2-data (= ${source:Version})," in debian/control breaks binNMU builds.
Sebastian Ramacher wrote: > This is wrong. apache2-data is an Architecture: all package, > but apache2 is Architecture: any. So using ${source:Version} > here is correct. Note that Debian does not currently support > binNMUs for Architecture: all packages, so apache2-data will > never have a +bX version. Thanks for that clarification. This is somewhat confusing for someone not doing package builds as a daily profession: If just doing a "dpkg-buildpackage -us -uc" on the apache2 sources _with_ the +bX extension, the apache2-data binary package _does_ get the +bX extension as well, at least with my build, causing the issue that I described initially. Thus, as much as I think I've leaned so far, binNMU builds on source packages that also produce Architekture: all binary packages must always be built separately from sources without the +bX extension for the Architecture: all binary packages, whereras the architecture-dependent binary packages may be built from a source package with a +bX extension, right? If this assumption is true, then why is the Debian build system (i.e. dpkg-buildpackage) not smart enough to simply ignore an existing +bX extension for Architecture: all binary packages? IMHO, this would simplify matters, as it would have avoided the pitfall that I stumbled into altogether. Please note that I my main goal is to better understand how to do it right for future builds.
Bug#1064950: apache2: (Legacy?) "Depends: apache2-data (= ${source:Version})," in debian/control breaks binNMU builds.
On 2024-02-28 07:16:07 +, Warlich, Christof wrote: > Subject: apache2: (Legacy?) "Depends: apache2-data (= ${source:Version})," in > debian/control breaks binNMU builds. > Source: apache2 > X-Debbugs-Cc: christof.warl...@siemens.com > Version: 2.4.57-2 > Severity: serious > Justification: fails to build from source (but built successfully in the past) > Tags: patch ftbfs > > Dear Maintainer, > > (re)building apache2 as binNMU (i.e. with appending "+b to the > package version") > works, but installation of the resulting apache2 package fails due to the > following dependency > in debian/control: > > Depends: apache2-data (= ${source:Version}), > > It causes apt-get to look for the dependency "apache2-data" (= 2.4.57-2) > which does not exist > in the newly built packages. Instead, the dependency should be satisfied by > "apache2-data (= 2.4.57-2+b)". > > The folliwing patch fixes the issue: > > diff --git a/debian/control b/debian/control > index 2eddc60..31121fa 100644 > --- a/debian/control > +++ b/debian/control > @@ -34,7 +34,7 @@ Rules-Requires-Root: binary-targets > Package: apache2 > Architecture: any > Depends: apache2-bin (= ${binary:Version}), > - apache2-data (= ${source:Version}), > + apache2-data (= ${binary:Version}), > apache2-utils (= ${binary:Version}), > lsb-base, > media-types, > > Please consider applying the patch. This is wrong. apache2-data is an Architecture: all package, but apache2 is Architecture: any. So using ${source:Version} here is correct. Note that Debian does not currently support binNMUs for Architecture: all packages, so apache2-data will never have a +bX version. Cheers > > Best regards, > > Christof Warlich > > P.S.: Note that the information below, being produced by "reportbug", is > irrelevant as I executed "reportbug" > on WSL2 on Windows 10. The actual Debian version is "bookworm". > > -- System Information: > Debian Release: bookworm/sid > APT prefers jammy-updates > APT policy: (500, 'jammy-updates'), (500, 'jammy-security'), (500, > 'jammy'), (100, 'jammy-backports') > Architecture: amd64 (x86_64) > > Kernel: Linux 5.10.102.1-microsoft-standard-WSL2+ (SMP w/16 CPU threads) > Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set > Shell: /bin/sh linked to /usr/bin/dash > Init: systemd (via /run/systemd/system) -- Sebastian Ramacher
apache2_2.4.58-2_sourceonly.changes REJECTED
apache2 source: lintian output: 'not-binnmuable-any-depends-all apache2 -> apache2-data', automatically rejected package. apache2 source: If you have a good reason, you may override this lintian tag. === Please feel free to respond to this email if you don't understand why your files were rejected, or if you upload new files which address our concerns. pgpfQaPlmvLga.pgp Description: PGP signature
Processing of apache2_2.4.58-2_sourceonly.changes
apache2_2.4.58-2_sourceonly.changes uploaded successfully to localhost along with the files: apache2_2.4.58-2.dsc apache2_2.4.58-2.debian.tar.xz Greetings, Your Debian queue daemon (running on host usper.debian.org)
Processed: Bug#1064950 marked as pending in apache2
Processing control commands: > tag -1 pending Bug #1064950 [src:apache2] apache2: (Legacy?) "Depends: apache2-data (= ${source:Version})," in debian/control breaks binNMU builds. Added tag(s) pending. -- 1064950: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064950 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#1064950: apache2: (Legacy?) "Depends: apache2-data (= ${source:Version})," in debian/control breaks binNMU builds.
Subject: apache2: (Legacy?) "Depends: apache2-data (= ${source:Version})," in debian/control breaks binNMU builds. Source: apache2 X-Debbugs-Cc: christof.warl...@siemens.com Version: 2.4.57-2 Severity: serious Justification: fails to build from source (but built successfully in the past) Tags: patch ftbfs Dear Maintainer, (re)building apache2 as binNMU (i.e. with appending "+b to the package version") works, but installation of the resulting apache2 package fails due to the following dependency in debian/control: Depends: apache2-data (= ${source:Version}), It causes apt-get to look for the dependency "apache2-data" (= 2.4.57-2) which does not exist in the newly built packages. Instead, the dependency should be satisfied by "apache2-data (= 2.4.57-2+b)". The folliwing patch fixes the issue: diff --git a/debian/control b/debian/control index 2eddc60..31121fa 100644 --- a/debian/control +++ b/debian/control @@ -34,7 +34,7 @@ Rules-Requires-Root: binary-targets Package: apache2 Architecture: any Depends: apache2-bin (= ${binary:Version}), - apache2-data (= ${source:Version}), + apache2-data (= ${binary:Version}), apache2-utils (= ${binary:Version}), lsb-base, media-types, Please consider applying the patch. Best regards, Christof Warlich P.S.: Note that the information below, being produced by "reportbug", is irrelevant as I executed "reportbug" on WSL2 on Windows 10. The actual Debian version is "bookworm". -- System Information: Debian Release: bookworm/sid APT prefers jammy-updates APT policy: (500, 'jammy-updates'), (500, 'jammy-security'), (500, 'jammy'), (100, 'jammy-backports') Architecture: amd64 (x86_64) Kernel: Linux 5.10.102.1-microsoft-standard-WSL2+ (SMP w/16 CPU threads) Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system)
Bug#1061893: marked as done (apr-util: NMU diff for 64-bit time_t transition)
Your message dated Wed, 28 Feb 2024 02:05:20 + with message-id and subject line Bug#1061893: fixed in apr-util 1.6.3-1.1 has caused the Debian Bug report #1061893, regarding apr-util: NMU diff for 64-bit time_t transition to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1061893: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1061893 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Source: apr-util Version: 1.6.3-1 Severity: serious Tags: patch pending Justification: library ABI skew on upgrade User: debian-...@lists.debian.org Usertags: time-t Dear maintainer, As part of the 64-bit time_t transition required to support 32-bit architectures in 2038 and beyond (https://wiki.debian.org/ReleaseGoals/64bit-time), we have identified apr-util as a source package shipping runtime libraries whose ABI either is affected by the change in size of time_t, or could not be analyzed via abi-compliance-checker (and therefore to be on the safe side we assume is affected). To ensure that inconsistent combinations of libraries with their reverse-dependencies are never installed together, it is necessary to have a library transition, which is most easily done by renaming the runtime library package. Since turning on 64-bit time_t is being handled centrally through a change to the default dpkg-buildflags (https://bugs.debian.org/1037136), it is important that libraries affected by this ABI change all be uploaded close together in time. Therefore I have prepared a 0-day NMU for apr-util which will initially be uploaded to experimental if possible, then to unstable after packages have cleared binary NEW. Please find the patch for this NMU attached. If you have any concerns about this patch, please reach out ASAP. Although this package will be uploaded to experimental immediately, there will be a period of several days before we begin uploads to unstable; so if information becomes available that your package should not be included in the transition, there is time for us to amend the planned uploads. -- System Information: Debian Release: trixie/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 6.5.0-14-generic (SMP w/12 CPU threads; PREEMPT) Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE Locale: LANG=C, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) diff -Nru apr-util-1.6.3/debian/changelog apr-util-1.6.3/debian/changelog --- apr-util-1.6.3/debian/changelog 2023-02-03 20:15:18.0 + +++ apr-util-1.6.3/debian/changelog 2024-01-30 00:55:31.0 + @@ -1,3 +1,10 @@ +apr-util (1.6.3-1.1) experimental; urgency=medium + + * Non-maintainer upload. + * Rename libraries for 64-bit time_t transition. + + -- Steve Langasek Tue, 30 Jan 2024 00:55:31 + + apr-util (1.6.3-1) unstable; urgency=medium [ Stefan Fritsch ] diff -Nru apr-util-1.6.3/debian/control apr-util-1.6.3/debian/control --- apr-util-1.6.3/debian/control 2023-02-02 22:42:28.0 + +++ apr-util-1.6.3/debian/control 2024-01-30 00:55:31.0 + @@ -22,7 +22,10 @@ Vcs-Git: https://salsa.debian.org/apache-team/apr-util.git Homepage: https://apr.apache.org/ -Package: libaprutil1 +Package: libaprutil1t64 +Provides: ${t64:Provides} +Replaces: libaprutil1 +Breaks: libaprutil1 (<< ${source:Version}) Architecture: any Multi-Arch: same Depends: ${shlibs:Depends}, diff -Nru apr-util-1.6.3/debian/libaprutil1.docs apr-util-1.6.3/debian/libaprutil1.docs --- apr-util-1.6.3/debian/libaprutil1.docs 2023-02-01 21:35:51.0 + +++ apr-util-1.6.3/debian/libaprutil1.docs 1970-01-01 00:00:00.0 + @@ -1 +0,0 @@ -NOTICE diff -Nru apr-util-1.6.3/debian/libaprutil1.install apr-util-1.6.3/debian/libaprutil1.install --- apr-util-1.6.3/debian/libaprutil1.install 2023-02-01 21:35:51.0 + +++ apr-util-1.6.3/debian/libaprutil1.install 1970-01-01 00:00:00.0 + @@ -1,3 +0,0 @@ -usr/lib/*/libaprutil-1.so.* -usr/lib/*/apr-util-1/apr_dbm*.so* -usr/lib/*/apr-util-1/apr_crypt*.so* diff -Nru apr-util-1.6.3/debian/libaprutil1.lintian-overrides apr-util-1.6.3/debian/libaprutil1.lintian-overrides --- apr-util-1.6.3/debian/libaprutil1.lintian-overrides 2023-02-01 21:35:51.0 + +++ apr-util-1.6.3/debian/libaprutil1.lintian-overrides 1970-01-01 00:00:00.0 + @@ -1,2 +0,0 @@ -libaprutil1: symbols-declares-dependency-on-other-package -libaprutil1:
Bug#1061894: marked as done (apr: NMU diff for 64-bit time_t transition)
Your message dated Wed, 28 Feb 2024 02:05:09 + with message-id and subject line Bug#1061894: fixed in apr 1.7.2-3.1 has caused the Debian Bug report #1061894, regarding apr: NMU diff for 64-bit time_t transition to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1061894: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1061894 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Source: apr Version: 1.7.2-3 Severity: serious Tags: patch pending Justification: library ABI skew on upgrade User: debian-...@lists.debian.org Usertags: time-t Dear maintainer, As part of the 64-bit time_t transition required to support 32-bit architectures in 2038 and beyond (https://wiki.debian.org/ReleaseGoals/64bit-time), we have identified apr as a source package shipping runtime libraries whose ABI either is affected by the change in size of time_t, or could not be analyzed via abi-compliance-checker (and therefore to be on the safe side we assume is affected). To ensure that inconsistent combinations of libraries with their reverse-dependencies are never installed together, it is necessary to have a library transition, which is most easily done by renaming the runtime library package. Since turning on 64-bit time_t is being handled centrally through a change to the default dpkg-buildflags (https://bugs.debian.org/1037136), it is important that libraries affected by this ABI change all be uploaded close together in time. Therefore I have prepared a 0-day NMU for apr which will initially be uploaded to experimental if possible, then to unstable after packages have cleared binary NEW. Please find the patch for this NMU attached. If you have any concerns about this patch, please reach out ASAP. Although this package will be uploaded to experimental immediately, there will be a period of several days before we begin uploads to unstable; so if information becomes available that your package should not be included in the transition, there is time for us to amend the planned uploads. -- System Information: Debian Release: trixie/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 6.5.0-14-generic (SMP w/12 CPU threads; PREEMPT) Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE Locale: LANG=C, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) diff -Nru apr-1.7.2/debian/changelog apr-1.7.2/debian/changelog --- apr-1.7.2/debian/changelog 2023-02-26 20:51:24.0 + +++ apr-1.7.2/debian/changelog 2024-01-30 00:57:09.0 + @@ -1,3 +1,10 @@ +apr (1.7.2-3.1) experimental; urgency=medium + + * Non-maintainer upload. + * Rename libraries for 64-bit time_t transition. + + -- Steve Langasek Tue, 30 Jan 2024 00:57:09 + + apr (1.7.2-3) unstable; urgency=medium * Add more fixes for atomics from upstream, in particular for diff -Nru apr-1.7.2/debian/control apr-1.7.2/debian/control --- apr-1.7.2/debian/control2023-02-03 16:18:13.0 + +++ apr-1.7.2/debian/control2024-01-30 00:57:09.0 + @@ -19,7 +19,10 @@ Homepage: https://apr.apache.org/ Rules-Requires-Root: no -Package: libapr1 +Package: libapr1t64 +Provides: ${t64:Provides} +Replaces: libapr1 +Breaks: libapr1 (<< ${source:Version}) Architecture: any Depends: ${shlibs:Depends}, ${misc:Depends} Pre-Depends: ${misc:Pre-Depends} diff -Nru apr-1.7.2/debian/libapr1.docs apr-1.7.2/debian/libapr1.docs --- apr-1.7.2/debian/libapr1.docs 2023-02-02 21:18:42.0 + +++ apr-1.7.2/debian/libapr1.docs 1970-01-01 00:00:00.0 + @@ -1 +0,0 @@ -NOTICE diff -Nru apr-1.7.2/debian/libapr1.install apr-1.7.2/debian/libapr1.install --- apr-1.7.2/debian/libapr1.install2023-02-02 21:18:42.0 + +++ apr-1.7.2/debian/libapr1.install1970-01-01 00:00:00.0 + @@ -1 +0,0 @@ -usr/lib/*/libapr-1.so.* diff -Nru apr-1.7.2/debian/libapr1.lintian-overrides apr-1.7.2/debian/libapr1.lintian-overrides --- apr-1.7.2/debian/libapr1.lintian-overrides 2023-02-02 21:18:42.0 + +++ apr-1.7.2/debian/libapr1.lintian-overrides 1970-01-01 00:00:00.0 + @@ -1 +0,0 @@ -libapr1: package-name-doesnt-match-sonames libapr-1-0 diff -Nru apr-1.7.2/debian/libapr1.symbols apr-1.7.2/debian/libapr1.symbols --- apr-1.7.2/debian/libapr1.symbols2023-02-02 21:18:42.0 + +++ apr-1.7.2/debian/libapr1.symbols1970-01-01 00:00:00.0 + @@ -1,2 +0,0 @@ -here for the purpose of tricking
apr-util_1.6.3-1.1_source.changes ACCEPTED into unstable
Thank you for your contribution to Debian. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 28 Feb 2024 01:16:25 + Source: apr-util Architecture: source Version: 1.6.3-1.1 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Steve Langasek Closes: 1061893 Changes: apr-util (1.6.3-1.1) unstable; urgency=medium . * Non-maintainer upload. * Rename libraries for 64-bit time_t transition. Closes: #1061893 Checksums-Sha1: 1b41aa3b6ea99dbcd6f184f12dc9243e9c5da699 2821 apr-util_1.6.3-1.1.dsc fa18f26df50933f6df3444f2ac2b72914489a0e7 340960 apr-util_1.6.3-1.1.debian.tar.xz 2f625cfae9d08526ee0b537006001595a02f8594 8440 apr-util_1.6.3-1.1_source.buildinfo Checksums-Sha256: 5d5865f51cc01cc02a4efc8e94b83d40934cf2d2f4e38487541aca3f39e624e9 2821 apr-util_1.6.3-1.1.dsc 062bce58873c4f3f6bb7054803173f2f786b03d2d220c0f98cb000a2aff51f7b 340960 apr-util_1.6.3-1.1.debian.tar.xz f5d638781a31393d86ba0cb9fe373a2ed0796fea7c3cd50f00a650e8ee162d84 8440 apr-util_1.6.3-1.1_source.buildinfo Files: 0ded55e2cf75faafa4f8bca9458565c7 2821 libs optional apr-util_1.6.3-1.1.dsc 17c8bd14d47347f328f2dc0ae181a7a1 340960 libs optional apr-util_1.6.3-1.1.debian.tar.xz f289eedcd57a9920e8fe39b0c61c76f3 8440 libs optional apr-util_1.6.3-1.1_source.buildinfo -BEGIN PGP SIGNATURE- iQJGBAEBCgAwFiEErEg/aN5yj0PyIC/KVo0w8yGyEz0FAmXeiYcSHHZvcmxvbkBk ZWJpYW4ub3JnAAoJEFaNMPMhshM95L4P/AvsqQNWqfjjaepXQWod/b3fdlw+tJGE U8U4e8F4Yv7KwmiQ3Qozh5Jrtlr60GPIbFFhJ2oIbQCTCygmVDTq0upMEeKTKZ6d HHRQt0u6TNAEfcQLWDMB4TcOisv4fdSaJSSZKnKeFn4dQ3MtU7XOA8kkG9HXNbtW iuKsRLt9dkXnWvVDWHD8CgfK3kCZX/VvA+g3W9VFc0aK3QO2RzhQ6y9rs+QsaoJQ PF5z2HPX6MBEKiQ9B9bhqBPzVUTD6iw6qeRt/oJsCrqI1EO/L6UMnj2YHXURogLC hfJadQblJsFozvF6HdAvBdAFkcdlrEymsMOJmTWJBCTmB28tlC74T413czJS00Oo 0pSHPdkzN/7NYFZsTE0ctE0bPKeSqaqdoREK2wFnmO/oEjovfiRDvFImaF8ytVm1 U4T6hDKzZcD4Sb4MdikTO+d6lPs3OPUE3mftAoS23EFeI9TwEMxyrQufWASjmn/l Jmbwm0AmrPxfHH3+HIUzST5v3aAmV5NOnYhQgJUwuqb3UuQdZfErnKBfPmoEjk8e AEUjwnmfAOm4DJ5opArwLJtmu201pbZwVRaT4lmeJQu1dns1lG8R5Oikct/5JqTt QClqAsSoXinz4HbwSpegk98SDjfVjx9/Q60pj6c2v0vgWBWWEqkH4WkfWaJW3Sex ab9IfKYL1KuX =p+iK -END PGP SIGNATURE- pgptRExPo5jxC.pgp Description: PGP signature
apr_1.7.2-3.1_source.changes ACCEPTED into unstable
Thank you for your contribution to Debian. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 28 Feb 2024 01:17:18 + Source: apr Architecture: source Version: 1.7.2-3.1 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Steve Langasek Closes: 1061894 Changes: apr (1.7.2-3.1) unstable; urgency=medium . * Non-maintainer upload. * Rename libraries for 64-bit time_t transition. Closes: #1061894 Checksums-Sha1: cc02267254976cf282c766c303118350230dcfe9 2323 apr_1.7.2-3.1.dsc fd40684c9c165c3adb3b696d9bd82ae006a3725b 54524 apr_1.7.2-3.1.debian.tar.xz eedd0804e2f086fe7ec370f3774749e1ccf13582 7416 apr_1.7.2-3.1_source.buildinfo Checksums-Sha256: d9836b929742ae2949c68ccb49e3578de28f85f7597cbdbcea6cc95ca7b01003 2323 apr_1.7.2-3.1.dsc c1f8f8f62ce560e863997d3e0ca755fa202f9577831951c902dcc2da9fcfe035 54524 apr_1.7.2-3.1.debian.tar.xz f0485a48b5470f5580117844a0073d017357ec784f20883e507aaa6ac3844f3d 7416 apr_1.7.2-3.1_source.buildinfo Files: 5d80729fa425ece5eb28c04c76d3bc35 2323 libs optional apr_1.7.2-3.1.dsc 0adbde40d5d86b518e0bd0f7f3b8a9be 54524 libs optional apr_1.7.2-3.1.debian.tar.xz ad89b41118e5862f12b02ef05eaad02a 7416 libs optional apr_1.7.2-3.1_source.buildinfo -BEGIN PGP SIGNATURE- iQJGBAEBCgAwFiEErEg/aN5yj0PyIC/KVo0w8yGyEz0FAmXeicgSHHZvcmxvbkBk ZWJpYW4ub3JnAAoJEFaNMPMhshM9OxYQAL2Y13A3wpEngnpmseMNnCRCyrlRDSF+ m3Gka2oDFWOFSahcHFtlHL0cQEeeuWbh41bnjv1pSMDVBdZK5Pl29HXiCl/yb0DN NECbMmaNbZ3eYi926wiTtjMitCNxzzP6ih1m86YkQvcr4tBnaBwxpS0/Ul1F6YCM H2/SoqcR3Pwe1PGOLwQVR+JK8ACnMFoaq3SP2vOu6E7g0IvO/iVTHd5elq/DoVyq asIG4ansBMBHvzK8IF4ZeCtj5clXofLym1COd2oU3CotaASCzY06xtCfgTgzxNYR pujpBx1byZT/Olyo/TOoV0X9iXtROkHLp9f6o9MketUe3C0xqRehhyNxJ/8arYAq 6BupyehZmnQX8e4eE+ugP/k4taE3iyakCMQQsz+NRsYfgqvazB75lOjIjJ/qNddP H9UIl8XUJ12K2fB/1x15KVlcHYYyEZizg0vH/HTFz0bggwUkqA58/flc6p2E+TNW KWQx3PldkO6XXB+0G/2lfRydB24BDoM4+LKMas6jGBE1zpGys7dy/gzusyMhjbTr eguZvB382RKIi3xRtyoWzTu1pe29ocwX9i9QH8fFW+e21IJ960oUVyTlXUKI0jIb O1xjXUQ3DPhyszrG5Mae9tVFAyFJPR1oxRgNLce6wlILPsjKna8gyjwa+5tCNvJ2 Jzq0a8jjor7t =HKhn -END PGP SIGNATURE- pgpMMBkfQ7Mef.pgp Description: PGP signature
Processing of apr-util_1.6.3-1.1_source.changes
apr-util_1.6.3-1.1_source.changes uploaded successfully to localhost along with the files: apr-util_1.6.3-1.1.dsc apr-util_1.6.3-1.1.debian.tar.xz apr-util_1.6.3-1.1_source.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)
Processing of apr_1.7.2-3.1_source.changes
apr_1.7.2-3.1_source.changes uploaded successfully to localhost along with the files: apr_1.7.2-3.1.dsc apr_1.7.2-3.1.debian.tar.xz apr_1.7.2-3.1_source.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)
Bug#1061894: apr: NMU diff for 64-bit time_t transition
Dear maintainer, Please find attached a final version of this patch for the time_t transition. This patch is being uploaded to unstable. Note that this adds a versioned build-dependency on dpkg-dev, to guard against accidental backports with a wrong ABI. Thanks! -- System Information: Debian Release: trixie/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 6.5.0-14-generic (SMP w/12 CPU threads; PREEMPT) Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE Locale: LANG=C, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) diff -Nru apr-1.7.2/debian/changelog apr-1.7.2/debian/changelog --- apr-1.7.2/debian/changelog 2023-02-26 20:51:24.0 + +++ apr-1.7.2/debian/changelog 2024-02-28 01:17:18.0 + @@ -1,3 +1,10 @@ +apr (1.7.2-3.1) unstable; urgency=medium + + * Non-maintainer upload. + * Rename libraries for 64-bit time_t transition. Closes: #1061894 + + -- Steve Langasek Wed, 28 Feb 2024 01:17:18 + + apr (1.7.2-3) unstable; urgency=medium * Add more fixes for atomics from upstream, in particular for diff -Nru apr-1.7.2/debian/control apr-1.7.2/debian/control --- apr-1.7.2/debian/control2023-02-03 16:18:13.0 + +++ apr-1.7.2/debian/control2024-02-28 01:17:18.0 + @@ -3,7 +3,7 @@ Priority: optional Maintainer: Debian Apache Maintainers Uploaders: Stefan Fritsch -Build-Depends: debhelper-compat (= 13), +Build-Depends: dpkg-dev (>= 1.22.5), debhelper-compat (= 13), autoconf, mawk, uuid-dev, @@ -19,7 +19,10 @@ Homepage: https://apr.apache.org/ Rules-Requires-Root: no -Package: libapr1 +Package: libapr1t64 +Provides: ${t64:Provides} +Replaces: libapr1 +Breaks: libapr1 (<< ${source:Version}) Architecture: any Depends: ${shlibs:Depends}, ${misc:Depends} Pre-Depends: ${misc:Pre-Depends} @@ -33,7 +36,7 @@ Package: libapr1-dev Architecture: any Section: libdevel -Depends: libapr1 (= ${binary:Version}), uuid-dev, ${misc:Depends}, libsctp-dev [linux-any], python3:any +Depends: libapr1t64 (= ${binary:Version}), uuid-dev, ${misc:Depends}, libsctp-dev [linux-any], python3:any Conflicts: libapr1.0-dev, libapr0-dev Description: Apache Portable Runtime Library - Development Headers APR is Apache's Portable Runtime Library, designed to be a support library diff -Nru apr-1.7.2/debian/libapr1.docs apr-1.7.2/debian/libapr1.docs --- apr-1.7.2/debian/libapr1.docs 2023-02-02 21:18:42.0 + +++ apr-1.7.2/debian/libapr1.docs 1970-01-01 00:00:00.0 + @@ -1 +0,0 @@ -NOTICE diff -Nru apr-1.7.2/debian/libapr1.install apr-1.7.2/debian/libapr1.install --- apr-1.7.2/debian/libapr1.install2023-02-02 21:18:42.0 + +++ apr-1.7.2/debian/libapr1.install1970-01-01 00:00:00.0 + @@ -1 +0,0 @@ -usr/lib/*/libapr-1.so.* diff -Nru apr-1.7.2/debian/libapr1.lintian-overrides apr-1.7.2/debian/libapr1.lintian-overrides --- apr-1.7.2/debian/libapr1.lintian-overrides 2023-02-02 21:18:42.0 + +++ apr-1.7.2/debian/libapr1.lintian-overrides 1970-01-01 00:00:00.0 + @@ -1 +0,0 @@ -libapr1: package-name-doesnt-match-sonames libapr-1-0 diff -Nru apr-1.7.2/debian/libapr1.symbols apr-1.7.2/debian/libapr1.symbols --- apr-1.7.2/debian/libapr1.symbols2023-02-02 21:18:42.0 + +++ apr-1.7.2/debian/libapr1.symbols1970-01-01 00:00:00.0 + @@ -1,2 +0,0 @@ -here for the purpose of tricking debhelper...bwahahahaha. - diff -Nru apr-1.7.2/debian/libapr1t64.docs apr-1.7.2/debian/libapr1t64.docs --- apr-1.7.2/debian/libapr1t64.docs1970-01-01 00:00:00.0 + +++ apr-1.7.2/debian/libapr1t64.docs2023-02-02 21:18:42.0 + @@ -0,0 +1 @@ +NOTICE diff -Nru apr-1.7.2/debian/libapr1t64.install apr-1.7.2/debian/libapr1t64.install --- apr-1.7.2/debian/libapr1t64.install 1970-01-01 00:00:00.0 + +++ apr-1.7.2/debian/libapr1t64.install 2023-02-02 21:18:42.0 + @@ -0,0 +1 @@ +usr/lib/*/libapr-1.so.* diff -Nru apr-1.7.2/debian/libapr1t64.lintian-overrides apr-1.7.2/debian/libapr1t64.lintian-overrides --- apr-1.7.2/debian/libapr1t64.lintian-overrides 1970-01-01 00:00:00.0 + +++ apr-1.7.2/debian/libapr1t64.lintian-overrides 2024-02-28 01:17:10.0 + @@ -0,0 +1,2 @@ +libapr1t64: package-name-doesnt-match-sonames libapr-1-0 +libapr1t64: package-name-doesnt-match-sonames libapr1 diff -Nru apr-1.7.2/debian/libapr1t64.symbols apr-1.7.2/debian/libapr1t64.symbols --- apr-1.7.2/debian/libapr1t64.symbols 1970-01-01 00:00:00.0 + +++ apr-1.7.2/debian/libapr1t64.symbols 2024-02-28 01:17:10.0 + @@ -0,0 +1,2 @@ +here for the purpose of tricking debhelper...bwahahahaha. +
Bug#1061893: apr-util: NMU diff for 64-bit time_t transition
Dear maintainer, Please find attached a final version of this patch for the time_t transition. This patch is being uploaded to unstable. Note that this adds a versioned build-dependency on dpkg-dev, to guard against accidental backports with a wrong ABI. Thanks! -- System Information: Debian Release: trixie/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 6.5.0-14-generic (SMP w/12 CPU threads; PREEMPT) Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE Locale: LANG=C, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) diff -Nru apr-util-1.6.3/debian/changelog apr-util-1.6.3/debian/changelog --- apr-util-1.6.3/debian/changelog 2023-02-03 20:15:18.0 + +++ apr-util-1.6.3/debian/changelog 2024-02-28 01:16:25.0 + @@ -1,3 +1,10 @@ +apr-util (1.6.3-1.1) unstable; urgency=medium + + * Non-maintainer upload. + * Rename libraries for 64-bit time_t transition. Closes: #1061893 + + -- Steve Langasek Wed, 28 Feb 2024 01:16:25 + + apr-util (1.6.3-1) unstable; urgency=medium [ Stefan Fritsch ] diff -Nru apr-util-1.6.3/debian/control apr-util-1.6.3/debian/control --- apr-util-1.6.3/debian/control 2023-02-02 22:42:28.0 + +++ apr-util-1.6.3/debian/control 2024-02-28 01:16:24.0 + @@ -3,7 +3,7 @@ Uploaders: Stefan Fritsch Section: libs Priority: optional -Build-Depends: debhelper-compat (= 11), +Build-Depends: dpkg-dev (>= 1.22.5), debhelper-compat (= 11), autoconf, mawk, libldap2-dev, @@ -22,7 +22,10 @@ Vcs-Git: https://salsa.debian.org/apache-team/apr-util.git Homepage: https://apr.apache.org/ -Package: libaprutil1 +Package: libaprutil1t64 +Provides: ${t64:Provides} +Replaces: libaprutil1 +Breaks: libaprutil1 (<< ${source:Version}) Architecture: any Multi-Arch: same Depends: ${shlibs:Depends}, @@ -39,7 +42,7 @@ Package: libaprutil1-ldap Architecture: any Multi-Arch: same -Depends: libaprutil1 (= ${binary:Version}), +Depends: libaprutil1t64 (= ${binary:Version}), ${shlibs:Depends}, ${misc:Depends} Pre-Depends: ${misc:Pre-Depends} @@ -56,7 +59,7 @@ Package: libaprutil1-dbd-mysql Architecture: any Multi-Arch: same -Depends: libaprutil1 (= ${binary:Version}), +Depends: libaprutil1t64 (= ${binary:Version}), ${shlibs:Depends}, ${misc:Depends} Pre-Depends: ${misc:Pre-Depends} @@ -73,7 +76,7 @@ Package: libaprutil1-dbd-sqlite3 Architecture: any Multi-Arch: same -Depends: libaprutil1 (= ${binary:Version}), +Depends: libaprutil1t64 (= ${binary:Version}), ${shlibs:Depends}, ${misc:Depends} Pre-Depends: ${misc:Pre-Depends} @@ -90,7 +93,7 @@ Package: libaprutil1-dbd-odbc Architecture: any Multi-Arch: same -Depends: libaprutil1 (= ${binary:Version}), +Depends: libaprutil1t64 (= ${binary:Version}), ${shlibs:Depends}, ${misc:Depends} Pre-Depends: ${misc:Pre-Depends} @@ -107,7 +110,7 @@ Package: libaprutil1-dbd-pgsql Architecture: any Multi-Arch: same -Depends: libaprutil1 (= ${binary:Version}), +Depends: libaprutil1t64 (= ${binary:Version}), ${shlibs:Depends}, ${misc:Depends} Pre-Depends: ${misc:Pre-Depends} @@ -124,7 +127,7 @@ Package: libaprutil1-dev Architecture: any Section: libdevel -Depends: libaprutil1 (= ${binary:Version}), +Depends: libaprutil1t64 (= ${binary:Version}), libldap2-dev, libexpat1-dev, libapr1-dev, diff -Nru apr-util-1.6.3/debian/libaprutil1.docs apr-util-1.6.3/debian/libaprutil1.docs --- apr-util-1.6.3/debian/libaprutil1.docs 2023-02-01 21:35:51.0 + +++ apr-util-1.6.3/debian/libaprutil1.docs 1970-01-01 00:00:00.0 + @@ -1 +0,0 @@ -NOTICE diff -Nru apr-util-1.6.3/debian/libaprutil1.install apr-util-1.6.3/debian/libaprutil1.install --- apr-util-1.6.3/debian/libaprutil1.install 2023-02-01 21:35:51.0 + +++ apr-util-1.6.3/debian/libaprutil1.install 1970-01-01 00:00:00.0 + @@ -1,3 +0,0 @@ -usr/lib/*/libaprutil-1.so.* -usr/lib/*/apr-util-1/apr_dbm*.so* -usr/lib/*/apr-util-1/apr_crypt*.so* diff -Nru apr-util-1.6.3/debian/libaprutil1.lintian-overrides apr-util-1.6.3/debian/libaprutil1.lintian-overrides --- apr-util-1.6.3/debian/libaprutil1.lintian-overrides 2023-02-01 21:35:51.0 + +++ apr-util-1.6.3/debian/libaprutil1.lintian-overrides 1970-01-01 00:00:00.0 + @@ -1,2 +0,0 @@ -libaprutil1: symbols-declares-dependency-on-other-package -libaprutil1: package-name-doesnt-match-sonames libaprutil-1-0 diff -Nru apr-util-1.6.3/debian/libaprutil1.symbols apr-util-1.6.3/debian/libaprutil1.symbols --- apr-util-1.6.3/debian/libaprutil1.symbols 2023-02-01 21:35:51.0 + +++ apr-util-1.6.3/debian/libaprutil1.symbols 1970-01-01 00:00:00.0 + @@ -1,357 +0,0 @@
Rebuilding apache2 Package as binNMU.
I've rebuilt apache2 as a binNMU, i.e. without patching the package itself, but only changing its build environment. Thus, I appended the string "+b1" to its version as described in https://wiki.debian.org/binNMU All resulting packages compile without any problem, but when I try to install apache2 from these packages, I get the following error: # apt install apache2 Reading package lists... Done Building dependency tree... Done Reading state information... Done Some packages could not be installed. This may mean that you have requested an impossible situation or if you are using the unstable distribution that some required packages have not yet been created or been moved out of Incoming. The following information may help to resolve the situation: The following packages have unmet dependencies: apache2 : Depends: apache2-data (= 2.4.57-2) Recommends: ssl-cert but it is not going to be installed E: Unable to correct problems, you have held broken packages. Searching for the root cause in debian/control, I see this: Package: apache2 Architecture: any Depends: apache2-bin (= ${binary:Version}), apache2-data (= ${source:Version}), apache2-utils (= ${binary:Version}), In the apache2-data line, is $source intentionally be used instead of $binary? If so, why? Or is this a bug? Replacing ${source:Version} with ${binary:Version} would at least fix the installation issue of my self-built binNMU. Thanks for any advice.
W sprawie sprzedaży
Szanowni Państwo, tworzymy programy szkoleniowe dostosowane do konkretnych potrzeb firmy. Nie marnujemy czasu na zbędne informacje. Skupiamy się na konkretnych umiejętnościach, które są kluczowe dla Państwa celów biznesowych. Nasze szkolenia są oparte na konkretnych przypadkach i sytuacjach, z jakimi Wasza firma może się spotkać. Przeanalizujemy potrzeby, zidentyfikujemy obszary do rozwoju i dostarczymy konkretne rozwiązania. Dzięki temu nasze warsztaty nie tylko rozwijają kompetencje, ale przekładają się na szybki zwrot z inwestycji. Interesuje Państwa indywidualnie zaprojektowany program szkoleniowy? Pozdrawiam Daniel Zakrzewski
New Project - Body Leasing
Hi, Our company specializes in IT Body Leasing, offering experienced programming teams with an average of 9 years of practice and broad technological knowledge. We support companies from Europe (mainly DACH countries) in developing their IT systems and tools. In the face of changing market conditions, we propose a flexible cooperation model. You can start and end cooperation at any time, adapting to the current needs of the project. We serve clients from industries such as industry, Industry 4.0, finance, automotive, and education. For each project, we assign a dedicated Customer Success Manager. If I have reached the right person, can we schedule a call in the next few days? If not, whom should I speak to? Best regards Rasmus Berg
Bug#895237: log of apache2 failing to start from certbot renewal
It seems that maybe the old apache hadn't completely shutdown when it tried to start it back up again. 2024-02-07T08:29:34.799158+00:00 app01 systemd[1]: Starting certbot.service - Certbot... 2024-02-07T08:29:38.763764+00:00 app01 systemd[1]: Stopping apache2.service - The Apache HTTP Server... 2024-02-07T08:29:39.100729+00:00 app01 systemd[1]: apache2.service: Deactivated successfully. 2024-02-07T08:29:39.102143+00:00 app01 systemd[1]: Stopped apache2.service - The Apache HTTP Server. 2024-02-07T08:29:39.105203+00:00 app01 systemd[1]: apache2.service: Consumed 31.653s CPU time. 2024-02-07T08:29:46.652015+00:00 app01 systemd[1]: Starting apache2.service - The Apache HTTP Server... 2024-02-07T08:29:46.801414+00:00 app01 apachectl[390170]: httpd (pid 390109) already running 2024-02-07T08:29:47.021026+00:00 app01 systemd[1]: apache2.service: Deactivated successfully. 2024-02-07T08:29:47.022580+00:00 app01 systemd[1]: Started apache2.service - The Apache HTTP Server. 2024-02-07T08:29:47.200575+00:00 app01 systemd[1]: certbot.service: Deactivated successfully. 2024-02-07T08:29:47.201944+00:00 app01 systemd[1]: Finished certbot.service - Certbot. 2024-02-07T08:29:47.203537+00:00 app01 systemd[1]: certbot.service: Consumed 3.925s CPU time. -- John Flinchbaugh j...@hjsoft.com
Processed: tagging 1061866, tagging 1061872, tagging 1061873, tagging 1061874, tagging 1061875, tagging 1061878 ...
Processing commands for cont...@bugs.debian.org: > tags 1061866 + sid trixie Bug #1061866 [src:adns] adns: NMU diff for 64-bit time_t transition Added tag(s) trixie and sid. > tags 1061872 + sid trixie Bug #1061872 [src:adolc] adolc: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061873 + sid trixie Bug #1061873 [src:afflib] afflib: NMU diff for 64-bit time_t transition Added tag(s) trixie and sid. > tags 1061874 + sid trixie Bug #1061874 [src:colpack] colpack: NMU diff for 64-bit time_t transition Added tag(s) trixie and sid. > tags 1061875 + sid trixie Bug #1061875 [src:afterstep] afterstep: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061878 + sid trixie Bug #1061878 [src:agg] agg: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061881 + sid trixie Bug #1061881 [src:akonadi-search] akonadi-search: NMU diff for 64-bit time_t transition Added tag(s) trixie and sid. > tags 1061883 + sid trixie Bug #1061883 [src:alberta] alberta: NMU diff for 64-bit time_t transition Added tag(s) trixie and sid. > tags 1061889 + sid trixie Bug #1061889 [src:angelscript] angelscript: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061890 + sid trixie Bug #1061890 [src:anthy] anthy: NMU diff for 64-bit time_t transition Added tag(s) trixie and sid. > tags 1061891 + sid trixie Bug #1061891 [src:apbs] apbs: NMU diff for 64-bit time_t transition Added tag(s) trixie and sid. > tags 1061892 + sid trixie Bug #1061892 [src:apophenia] apophenia: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061893 + sid trixie Bug #1061893 [src:apr-util] apr-util: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061894 + sid trixie Bug #1061894 [src:apr] apr: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061897 + sid trixie Bug #1061897 [src:aribb24] aribb24: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061900 + sid trixie Bug #1061900 [src:comedilib] comedilib: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061901 + sid trixie Bug #1061901 [src:compiz] compiz: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061903 + sid trixie Bug #1061903 [src:coolkey] coolkey: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061905 + sid trixie Bug #1061905 [src:cpp-hocon] cpp-hocon: NMU diff for 64-bit time_t transition Added tag(s) trixie and sid. > tags 1061908 + sid trixie Bug #1061908 [src:cppdb] cppdb: NMU diff for 64-bit time_t transition Added tag(s) trixie and sid. > tags 1061909 + sid trixie Bug #1061909 [src:croaring] croaring: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061911 + sid trixie Bug #1061911 [src:csmith] csmith: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061913 + sid trixie Bug #1061913 [src:ctpl] ctpl: NMU diff for 64-bit time_t transition Added tag(s) trixie and sid. > tags 1061914 + sid trixie Bug #1061914 [src:cuneiform] cuneiform: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061915 + sid trixie Bug #1061915 [src:cups-filters] cups-filters: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061921 + sid trixie Bug #1061921 [src:asl] asl: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061922 + sid trixie Bug #1061922 [src:astrometry.net] astrometry.net: NMU diff for 64-bit time_t transition Added tag(s) trixie and sid. > tags 1061928 + sid trixie Bug #1061928 [src:avro-c] avro-c: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061929 + sid trixie Bug #1061929 [src:bamf] bamf: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061932 + sid trixie Bug #1061932 [src:blitz++] blitz++: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061934 + sid trixie Bug #1061934 [src:boinc] boinc: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061943 + sid trixie Bug #1061943 [src:forge] forge: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061945 + sid trixie Bug #1061945 [src:fpgatools] fpgatools: NMU diff for 64-bit time_t transition Added tag(s) trixie and sid. > tags 1061953 + sid trixie Bug #1061953 [src:freewnn] freewnn: NMU diff for 64-bit time_t transition Added tag(s) sid and trixie. > tags 1061954 + sid trixie Bug #1061954 [src:frog] frog: NMU diff for 64-bit time_t transition Added tag(s) trixie and sid. > tags 1061955 + sid trixie Bug #1061955 [src:fsplib] fsplib: NMU diff for 64-bit time_t transition Added tag(s) trixie and sid. > tags 1061957 + sid trixie Bug #1061957 [src:funtools] funtools: NMU diff for 64-bit time_t transition Added tag(s) trixie and sid. > tags 1061961 + sid trixie Bug #1061961 {Done: Bas Couwenberg } [src:fyba] fyba: NMU diff for 64-bit
apr-util_1.6.3-1.1~exp2_source.changes ACCEPTED into experimental
Thank you for your contribution to Debian. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 31 Jan 2024 05:58:19 + Source: apr-util Architecture: source Version: 1.6.3-1.1~exp2 Distribution: experimental Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Steve Langasek Changes: apr-util (1.6.3-1.1~exp2) experimental; urgency=medium . * Non-maintainer upload. * Rename libraries for 64-bit time_t transition. * Fix uninstallable packages from the previous upload. Checksums-Sha1: d3db7d0c374dd11b5956bd7ebc4d057f35dbec10 2819 apr-util_1.6.3-1.1~exp2.dsc 70121cfbcabae0280ba735f1817f7f54db9b59d7 340936 apr-util_1.6.3-1.1~exp2.debian.tar.xz aa86b63a5df9f8f80654eaf0732adb5ab60031c6 7936 apr-util_1.6.3-1.1~exp2_source.buildinfo Checksums-Sha256: 7129eba347188b289f6d1fe6c2820c10e6ae872d936d6aca76f06a0fc73c695a 2819 apr-util_1.6.3-1.1~exp2.dsc 7cfc901a6ed3659ffe34f522878235f0eda08fab0615d3a2b88d677c925415b4 340936 apr-util_1.6.3-1.1~exp2.debian.tar.xz 69310d95f5b29a6ab6cb7a6bb1dabd622664d4e05e1537053e56811f718bbb1a 7936 apr-util_1.6.3-1.1~exp2_source.buildinfo Files: 614455994a9894b01e019958758681e4 2819 libs optional apr-util_1.6.3-1.1~exp2.dsc 3359d448f622d08e61095f2b5f30437d 340936 libs optional apr-util_1.6.3-1.1~exp2.debian.tar.xz 72cd3fc0fef1b737b5df4c8864673cdd 7936 libs optional apr-util_1.6.3-1.1~exp2_source.buildinfo -BEGIN PGP SIGNATURE- iQJGBAEBCgAwFiEErEg/aN5yj0PyIC/KVo0w8yGyEz0FAmW54iwSHHZvcmxvbkBk ZWJpYW4ub3JnAAoJEFaNMPMhshM9FyYP/2S+PIXTs2aFc1+1Y+fxhGHAeR5U9gBk 9U8X+B+OyJ9XF7LvEMf7lmeaIJmJxMMHg6MJdX7wbO1D2b4xxBseSorPkSHs+/+O 6c2w3sCdBL78bADGiEXQa63lYa4Pf1xPjyNh6ZcerdlRcPb26+TKD73HfnzRyxEW 4imuUBT9BCICr8hkqC5yM4yfuSMbFYyWuNqIII+r0I+xg/oiEr0GzHEuCEL3Gcy9 JoQUR87otH5XxHookL3XpfoP/utJAgkJd9IuLEhqGphzc3J1/hrlc+IcPrhHf7HX 4YVQlFbyNoHl06yHSmcAdpvWchJDEwQ8r+G8p7oHA7Iy60X59YimRKQ58RDn6p3B KpESBD1tiSNGv+8KTmcTBXtmBEo0kgv7PTLmQ6j1o5IpMKtCVBr7jRkiF3WD17QF HJmzbjWvFGG3srHKuOcrdSbOaDDOVWsR3hLUCEg8xbwD4cFlOw3zPMt/PnLsa1Gy aNeuHxOP2oaWXfR7nvk6oDCUBTMJTBAd+eHBWeBBAvviNpsGguuIMP6ojS8AOJDW nEuji99g0qLHh3KtHP6qwHitdkP5/uhFa9lNL/gCRz23BNeFYxry6IVItcG2kBgO dJ7hZ3NLmShRhLoqkSmMwZzAQWD/rQ1gyVRPBUMn3aum52U4TL3KrDLe2SZ2UlYH GSPmZzJutraS =3v30 -END PGP SIGNATURE-
apr_1.7.2-3.1~exp2_source.changes ACCEPTED into experimental
Thank you for your contribution to Debian. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 31 Jan 2024 06:04:49 + Source: apr Architecture: source Version: 1.7.2-3.1~exp2 Distribution: experimental Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Steve Langasek Changes: apr (1.7.2-3.1~exp2) experimental; urgency=medium . * Non-maintainer upload. * Rename libraries for 64-bit time_t transition. * Fix uninstallable packages from the previous upload. Checksums-Sha1: 07cffeb07e9f0d296e4d62f22e611b3e7f8303e8 2321 apr_1.7.2-3.1~exp2.dsc c5ca8316af8bc08619dd306d7a71cdc7e8f9e689 54536 apr_1.7.2-3.1~exp2.debian.tar.xz 0d20ecd5b54841cf3b81a3309a1ba4672f73ffcc 6930 apr_1.7.2-3.1~exp2_source.buildinfo Checksums-Sha256: 157217272997c661e60b23ec91a5d7762b59bcab2defd2cfe6aef0e59a0176b5 2321 apr_1.7.2-3.1~exp2.dsc c47a56cf8f8ff7b428eba8b262261c1b7bc7a6c7f4bb078c7370ef78bc7379fc 54536 apr_1.7.2-3.1~exp2.debian.tar.xz 764dca1c1587cc38ec9788aba939a27dcbb0886fa645634553f57ccc1b49abbb 6930 apr_1.7.2-3.1~exp2_source.buildinfo Files: 38061b323d3c5fc06468562b115f354e 2321 libs optional apr_1.7.2-3.1~exp2.dsc 65e833d2740e64c411394aa59e1b3508 54536 libs optional apr_1.7.2-3.1~exp2.debian.tar.xz 014def4eaf81738e3c4a0dfb9e811658 6930 libs optional apr_1.7.2-3.1~exp2_source.buildinfo -BEGIN PGP SIGNATURE- iQJGBAEBCgAwFiEErEg/aN5yj0PyIC/KVo0w8yGyEz0FAmW542ESHHZvcmxvbkBk ZWJpYW4ub3JnAAoJEFaNMPMhshM9g/0P/29Iam0lsZ7Wi2EY3qxvRPsyGJOCN9L+ JzJ9mNV68mInqJfHGJ7Y3+OfmYtWiibLj0BlnNyy8/ssLfhPPn42GheqVyB+cJ3y Euve/rQg3nwAupUF5X2/jIqV3P3l8zbqSobw/Yi6v8QPnEvKYfaaW5iODLnasDm+ CmLRS98MUsCqV6LoGPccBNnMv+5FvNYSefmBNi9WOl65s88UE7G5pxxWeS5IVlrZ tC8Lxcz1prEApFzt0GsKAw0BOXTYenEaTf6cH3mStrSIz1nw+zOO99lFw2ao9V/r KOeSCOtZeGJNPgqNiM5G0/bAXgOmShOgpShzSOEmuOYfSlXCl/XTKHV2sBArQo6z 5wFlx0gRZGOYQGTeHBGn3JyK4UMEV3rAvbETFmpHO0XAgAeGaPX3Jj5rQtTbUwLZ Al01MhIrYsAKD966Bj0ZWJUKaGKYM4xx/8dMm2uoJwq5pWh6qo7bD3I3W4A0u9Cc dI7Ad6zl3I5MvMBl9AI8YLfNtnVJdReehRFlq86geZwz7tArW0ep94BpRRRkd6/7 ig09vm1kQUPPjgSaUuIPd0r7Jt4Ymx3u0J54j/QiCSQYZ2T8jl1KyussT/cU5P1e UKu6FQA+bRFlC/uWiFrh8AA/respO4IC6g5RH4HvRrn1jrvYG2z+Jy76KT+oQUwR kByL3fGDYHeO =AJO3 -END PGP SIGNATURE-
Processing of apr_1.7.2-3.1~exp2_source.changes
apr_1.7.2-3.1~exp2_source.changes uploaded successfully to localhost along with the files: apr_1.7.2-3.1~exp2.dsc apr_1.7.2-3.1~exp2.debian.tar.xz apr_1.7.2-3.1~exp2_source.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)
Processing of apr-util_1.6.3-1.1~exp2_source.changes
apr-util_1.6.3-1.1~exp2_source.changes uploaded successfully to localhost along with the files: apr-util_1.6.3-1.1~exp2.dsc apr-util_1.6.3-1.1~exp2.debian.tar.xz apr-util_1.6.3-1.1~exp2_source.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)
Bug#1061894: apr: NMU diff for 64-bit time_t transition
Source: apr Followup-For: Bug #1061894 Apologies, an oversight in the conversion script caused us to fail to update strict versioned dependencies on the previous package name. Please find attached a fixed patch. This has also now been uploaded to experimental. diff -Nru apr-1.7.2/debian/changelog apr-1.7.2/debian/changelog --- apr-1.7.2/debian/changelog 2023-02-26 20:51:24.0 + +++ apr-1.7.2/debian/changelog 2024-01-31 06:04:49.0 + @@ -1,3 +1,11 @@ +apr (1.7.2-3.1~exp2) experimental; urgency=medium + + * Non-maintainer upload. + * Rename libraries for 64-bit time_t transition. + * Fix uninstallable packages from the previous upload. + + -- Steve Langasek Wed, 31 Jan 2024 06:04:49 + + apr (1.7.2-3) unstable; urgency=medium * Add more fixes for atomics from upstream, in particular for diff -Nru apr-1.7.2/debian/control apr-1.7.2/debian/control --- apr-1.7.2/debian/control2023-02-03 16:18:13.0 + +++ apr-1.7.2/debian/control2024-01-31 06:04:48.0 + @@ -19,7 +19,10 @@ Homepage: https://apr.apache.org/ Rules-Requires-Root: no -Package: libapr1 +Package: libapr1t64 +Provides: ${t64:Provides} +Replaces: libapr1 +Breaks: libapr1 (<< ${source:Version}) Architecture: any Depends: ${shlibs:Depends}, ${misc:Depends} Pre-Depends: ${misc:Pre-Depends} @@ -33,7 +36,7 @@ Package: libapr1-dev Architecture: any Section: libdevel -Depends: libapr1 (= ${binary:Version}), uuid-dev, ${misc:Depends}, libsctp-dev [linux-any], python3:any +Depends: libapr1t64 (= ${binary:Version}), uuid-dev, ${misc:Depends}, libsctp-dev [linux-any], python3:any Conflicts: libapr1.0-dev, libapr0-dev Description: Apache Portable Runtime Library - Development Headers APR is Apache's Portable Runtime Library, designed to be a support library diff -Nru apr-1.7.2/debian/libapr1.docs apr-1.7.2/debian/libapr1.docs --- apr-1.7.2/debian/libapr1.docs 2023-02-02 21:18:42.0 + +++ apr-1.7.2/debian/libapr1.docs 1970-01-01 00:00:00.0 + @@ -1 +0,0 @@ -NOTICE diff -Nru apr-1.7.2/debian/libapr1.install apr-1.7.2/debian/libapr1.install --- apr-1.7.2/debian/libapr1.install2023-02-02 21:18:42.0 + +++ apr-1.7.2/debian/libapr1.install1970-01-01 00:00:00.0 + @@ -1 +0,0 @@ -usr/lib/*/libapr-1.so.* diff -Nru apr-1.7.2/debian/libapr1.lintian-overrides apr-1.7.2/debian/libapr1.lintian-overrides --- apr-1.7.2/debian/libapr1.lintian-overrides 2023-02-02 21:18:42.0 + +++ apr-1.7.2/debian/libapr1.lintian-overrides 1970-01-01 00:00:00.0 + @@ -1 +0,0 @@ -libapr1: package-name-doesnt-match-sonames libapr-1-0 diff -Nru apr-1.7.2/debian/libapr1.symbols apr-1.7.2/debian/libapr1.symbols --- apr-1.7.2/debian/libapr1.symbols2023-02-02 21:18:42.0 + +++ apr-1.7.2/debian/libapr1.symbols1970-01-01 00:00:00.0 + @@ -1,2 +0,0 @@ -here for the purpose of tricking debhelper...bwahahahaha. - diff -Nru apr-1.7.2/debian/libapr1t64.docs apr-1.7.2/debian/libapr1t64.docs --- apr-1.7.2/debian/libapr1t64.docs1970-01-01 00:00:00.0 + +++ apr-1.7.2/debian/libapr1t64.docs2023-02-02 21:18:42.0 + @@ -0,0 +1 @@ +NOTICE diff -Nru apr-1.7.2/debian/libapr1t64.install apr-1.7.2/debian/libapr1t64.install --- apr-1.7.2/debian/libapr1t64.install 1970-01-01 00:00:00.0 + +++ apr-1.7.2/debian/libapr1t64.install 2023-02-02 21:18:42.0 + @@ -0,0 +1 @@ +usr/lib/*/libapr-1.so.* diff -Nru apr-1.7.2/debian/libapr1t64.lintian-overrides apr-1.7.2/debian/libapr1t64.lintian-overrides --- apr-1.7.2/debian/libapr1t64.lintian-overrides 1970-01-01 00:00:00.0 + +++ apr-1.7.2/debian/libapr1t64.lintian-overrides 2024-01-31 06:04:48.0 + @@ -0,0 +1,2 @@ +libapr1t64: package-name-doesnt-match-sonames libapr-1-0 +libapr1t64: package-name-doesnt-match-sonames libapr1 diff -Nru apr-1.7.2/debian/libapr1t64.symbols apr-1.7.2/debian/libapr1t64.symbols --- apr-1.7.2/debian/libapr1t64.symbols 1970-01-01 00:00:00.0 + +++ apr-1.7.2/debian/libapr1t64.symbols 2024-01-31 06:04:48.0 + @@ -0,0 +1,2 @@ +here for the purpose of tricking debhelper...bwahahahaha. +
Bug#1061893: apr-util: NMU diff for 64-bit time_t transition
Source: apr-util Followup-For: Bug #1061893 Apologies, an oversight in the conversion script caused us to fail to update strict versioned dependencies on the previous package name. Please find attached a fixed patch. This has also now been uploaded to experimental. diff -Nru apr-util-1.6.3/debian/changelog apr-util-1.6.3/debian/changelog --- apr-util-1.6.3/debian/changelog 2023-02-03 20:15:18.0 + +++ apr-util-1.6.3/debian/changelog 2024-01-31 05:58:19.0 + @@ -1,3 +1,11 @@ +apr-util (1.6.3-1.1~exp2) experimental; urgency=medium + + * Non-maintainer upload. + * Rename libraries for 64-bit time_t transition. + * Fix uninstallable packages from the previous upload. + + -- Steve Langasek Wed, 31 Jan 2024 05:58:19 + + apr-util (1.6.3-1) unstable; urgency=medium [ Stefan Fritsch ] diff -Nru apr-util-1.6.3/debian/control apr-util-1.6.3/debian/control --- apr-util-1.6.3/debian/control 2023-02-02 22:42:28.0 + +++ apr-util-1.6.3/debian/control 2024-01-31 05:58:19.0 + @@ -22,7 +22,10 @@ Vcs-Git: https://salsa.debian.org/apache-team/apr-util.git Homepage: https://apr.apache.org/ -Package: libaprutil1 +Package: libaprutil1t64 +Provides: ${t64:Provides} +Replaces: libaprutil1 +Breaks: libaprutil1 (<< ${source:Version}) Architecture: any Multi-Arch: same Depends: ${shlibs:Depends}, @@ -39,7 +42,7 @@ Package: libaprutil1-ldap Architecture: any Multi-Arch: same -Depends: libaprutil1 (= ${binary:Version}), +Depends: libaprutil1t64 (= ${binary:Version}), ${shlibs:Depends}, ${misc:Depends} Pre-Depends: ${misc:Pre-Depends} @@ -56,7 +59,7 @@ Package: libaprutil1-dbd-mysql Architecture: any Multi-Arch: same -Depends: libaprutil1 (= ${binary:Version}), +Depends: libaprutil1t64 (= ${binary:Version}), ${shlibs:Depends}, ${misc:Depends} Pre-Depends: ${misc:Pre-Depends} @@ -73,7 +76,7 @@ Package: libaprutil1-dbd-sqlite3 Architecture: any Multi-Arch: same -Depends: libaprutil1 (= ${binary:Version}), +Depends: libaprutil1t64 (= ${binary:Version}), ${shlibs:Depends}, ${misc:Depends} Pre-Depends: ${misc:Pre-Depends} @@ -90,7 +93,7 @@ Package: libaprutil1-dbd-odbc Architecture: any Multi-Arch: same -Depends: libaprutil1 (= ${binary:Version}), +Depends: libaprutil1t64 (= ${binary:Version}), ${shlibs:Depends}, ${misc:Depends} Pre-Depends: ${misc:Pre-Depends} @@ -107,7 +110,7 @@ Package: libaprutil1-dbd-pgsql Architecture: any Multi-Arch: same -Depends: libaprutil1 (= ${binary:Version}), +Depends: libaprutil1t64 (= ${binary:Version}), ${shlibs:Depends}, ${misc:Depends} Pre-Depends: ${misc:Pre-Depends} @@ -124,7 +127,7 @@ Package: libaprutil1-dev Architecture: any Section: libdevel -Depends: libaprutil1 (= ${binary:Version}), +Depends: libaprutil1t64 (= ${binary:Version}), libldap2-dev, libexpat1-dev, libapr1-dev, diff -Nru apr-util-1.6.3/debian/libaprutil1.docs apr-util-1.6.3/debian/libaprutil1.docs --- apr-util-1.6.3/debian/libaprutil1.docs 2023-02-01 21:35:51.0 + +++ apr-util-1.6.3/debian/libaprutil1.docs 1970-01-01 00:00:00.0 + @@ -1 +0,0 @@ -NOTICE diff -Nru apr-util-1.6.3/debian/libaprutil1.install apr-util-1.6.3/debian/libaprutil1.install --- apr-util-1.6.3/debian/libaprutil1.install 2023-02-01 21:35:51.0 + +++ apr-util-1.6.3/debian/libaprutil1.install 1970-01-01 00:00:00.0 + @@ -1,3 +0,0 @@ -usr/lib/*/libaprutil-1.so.* -usr/lib/*/apr-util-1/apr_dbm*.so* -usr/lib/*/apr-util-1/apr_crypt*.so* diff -Nru apr-util-1.6.3/debian/libaprutil1.lintian-overrides apr-util-1.6.3/debian/libaprutil1.lintian-overrides --- apr-util-1.6.3/debian/libaprutil1.lintian-overrides 2023-02-01 21:35:51.0 + +++ apr-util-1.6.3/debian/libaprutil1.lintian-overrides 1970-01-01 00:00:00.0 + @@ -1,2 +0,0 @@ -libaprutil1: symbols-declares-dependency-on-other-package -libaprutil1: package-name-doesnt-match-sonames libaprutil-1-0 diff -Nru apr-util-1.6.3/debian/libaprutil1.symbols apr-util-1.6.3/debian/libaprutil1.symbols --- apr-util-1.6.3/debian/libaprutil1.symbols 2023-02-01 21:35:51.0 + +++ apr-util-1.6.3/debian/libaprutil1.symbols 1970-01-01 00:00:00.0 + @@ -1,357 +0,0 @@ -libaprutil-1.so.0 libaprutil1 #MINVER# -| libaprutil1-ldap , libaprutil1 #MINVER# -| libaprutil1-dbd-sqlite3|libaprutil1-dbd-mysql|libaprutil1-dbd-odbc|libaprutil1-dbd-pgsql|libaprutil1-dbd-freetds , libaprutil1 #MINVER# - _crypt_blowfish_rn@Base 1.5.0 - _crypt_gensalt_blowfish_rn@Base 1.5.0 - _crypt_output_magic@Base 1.5.0 - apr__memzero_explicit@Base 1.6.0 - apr_base64_decode@Base 1.2.7+dfsg - apr_base64_decode_binary@Base 1.2.7+dfsg - apr_base64_decode_len@Base 1.2.7+dfsg - apr_base64_encode@Base 1.2.7+dfsg - apr_base64_encode_binary@Base 1.2.7+dfsg - apr_base64_encode_len@Base 1.2.7+dfsg - apr_bcrypt_encode@Base 1.5.0 -
Leasing sprzętu IT
Dzień dobry, możemy zaproponować Państwu laptopy, komputery stacjonarne, monitory, drukarki (fabrycznie nowy sprzęt) i inne rozwiązania sprzętowe w znacznie niższej cenie i możliwością bezpłatnej konfiguracji według potrzeb użytkowników (Ram, dysk, modem WWAN). Zapewniamy różne formy finansowania – leasing, najem długoterminowy czy odroczony termin płatności. Gwarantujemy szybką reakcję na zapotrzebowanie i profesjonalny serwis posprzedażowy. Chcieliby Państwo sprawdzić co możemy zaoferować? Z pozdrowieniami Adam Halbert
apr-util_1.6.3-1.1~exp1_amd64.changes ACCEPTED into experimental
Thank you for your contribution to Debian. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 30 Jan 2024 00:55:52 + Source: apr-util Binary: libaprutil1-dbd-mysql libaprutil1-dbd-mysql-dbgsym libaprutil1-dbd-odbc libaprutil1-dbd-odbc-dbgsym libaprutil1-dbd-pgsql libaprutil1-dbd-pgsql-dbgsym libaprutil1-dbd-sqlite3 libaprutil1-dbd-sqlite3-dbgsym libaprutil1-dev libaprutil1-ldap libaprutil1-ldap-dbgsym libaprutil1t64 libaprutil1t64-dbgsym Architecture: source amd64 Version: 1.6.3-1.1~exp1 Distribution: experimental Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Steve Langasek Description: libaprutil1-dbd-mysql - Apache Portable Runtime Utility Library - MySQL Driver libaprutil1-dbd-odbc - Apache Portable Runtime Utility Library - ODBC Driver libaprutil1-dbd-pgsql - Apache Portable Runtime Utility Library - PostgreSQL Driver libaprutil1-dbd-sqlite3 - Apache Portable Runtime Utility Library - SQLite3 Driver libaprutil1-dev - Apache Portable Runtime Utility Library - Development Headers libaprutil1-ldap - Apache Portable Runtime Utility Library - LDAP Driver libaprutil1t64 - Apache Portable Runtime Utility Library Changes: apr-util (1.6.3-1.1~exp1) experimental; urgency=medium . * Non-maintainer upload. * Rename libraries for 64-bit time_t transition. Checksums-Sha1: a3dbbf59ebcc5c21c865a03aa457e718bf80bbdf 2819 apr-util_1.6.3-1.1~exp1.dsc ba7daa41112c4c4c7f3b28c67b4e1a86332896d2 340936 apr-util_1.6.3-1.1~exp1.debian.tar.xz f941285e1031a38bf30e7af5b78e6dd2fc2e25e0 12309 apr-util_1.6.3-1.1~exp1_amd64.buildinfo 4205ce4944db8e675b7dc18553176a65b8db2e43 30568 libaprutil1-dbd-mysql-dbgsym_1.6.3-1.1~exp1_amd64.deb ccaaefcaa4dbc02720a7ed168eeffbae30d0e195 15572 libaprutil1-dbd-mysql_1.6.3-1.1~exp1_amd64.deb e45ea6dd7ce5eef214fa41f72263f582046a15f5 30240 libaprutil1-dbd-odbc-dbgsym_1.6.3-1.1~exp1_amd64.deb d73f733001212e1551579d82d68a8c7d5eab728f 19352 libaprutil1-dbd-odbc_1.6.3-1.1~exp1_amd64.deb 3a9dbb616cade8672286fe72fa36058451dc65c3 22832 libaprutil1-dbd-pgsql-dbgsym_1.6.3-1.1~exp1_amd64.deb eef0b0df166c1adabbaea6037c6cace47b479d5a 15420 libaprutil1-dbd-pgsql_1.6.3-1.1~exp1_amd64.deb 45435bd157c3732832ab74a20836dab2d226b616 16620 libaprutil1-dbd-sqlite3-dbgsym_1.6.3-1.1~exp1_amd64.deb 0afaeb52fd68ac376aff8989436d338ac088c1e0 13688 libaprutil1-dbd-sqlite3_1.6.3-1.1~exp1_amd64.deb 478052e0b1d6a74432532431de233da56ea876ca 1103564 libaprutil1-dev_1.6.3-1.1~exp1_amd64.deb 414ee3eab929737b9082b45019808d83ab68ccd2 10556 libaprutil1-ldap-dbgsym_1.6.3-1.1~exp1_amd64.deb 65ff5c2e50025c2cfdbb08037584c91f9bdaab2f 11916 libaprutil1-ldap_1.6.3-1.1~exp1_amd64.deb eeec196e70da308d8f8568efbfabb08bebdb759f 259680 libaprutil1t64-dbgsym_1.6.3-1.1~exp1_amd64.deb 10ae457228aceaffd97c2dbd7be36325314ac4fc 88124 libaprutil1t64_1.6.3-1.1~exp1_amd64.deb Checksums-Sha256: 0709e1cbd36bb250ea322186ef4ecb1abe05fc3ac36e4bf67cb861255621a585 2819 apr-util_1.6.3-1.1~exp1.dsc af7dd4565fa4a3a7b2779b14b9c181d6d7d9df05f0e30183033732897a973ffb 340936 apr-util_1.6.3-1.1~exp1.debian.tar.xz e69cf4ee2d0473fcff72c40bff0b6d3286cda2be47b6304bcee77471c12d082b 12309 apr-util_1.6.3-1.1~exp1_amd64.buildinfo d74b9071063f7291e2542f09723aea80739492c723d49d749924faeaf7988314 30568 libaprutil1-dbd-mysql-dbgsym_1.6.3-1.1~exp1_amd64.deb 137315c5fbd5e421842c9c1761e5c19e3582db0296ad4c41788b07c7f1449299 15572 libaprutil1-dbd-mysql_1.6.3-1.1~exp1_amd64.deb 42b6e694af09f1dd8d1be0b9706fd5b4547e039864ccdca230af5a740ddf 30240 libaprutil1-dbd-odbc-dbgsym_1.6.3-1.1~exp1_amd64.deb 8be874c4681748767fcedd9da7bc8a33166ab8fa2a8fde6f35298984c6e962c7 19352 libaprutil1-dbd-odbc_1.6.3-1.1~exp1_amd64.deb 54619d40664f647a1e44af68c8dda51002a5d293ee3e6930e700ac919f25e3bd 22832 libaprutil1-dbd-pgsql-dbgsym_1.6.3-1.1~exp1_amd64.deb f21589884aeef2b85dd36d1b774f4374c18f4db442440aef5a7866ca14c1bac1 15420 libaprutil1-dbd-pgsql_1.6.3-1.1~exp1_amd64.deb e3787a4315fadb4a41c4659c23d0900e6a30eaa0d7008464e79db2a427e56759 16620 libaprutil1-dbd-sqlite3-dbgsym_1.6.3-1.1~exp1_amd64.deb 995acf021dead0b8a5d8c7591c0cac99deac875e9997727f7b28277ffba78572 13688 libaprutil1-dbd-sqlite3_1.6.3-1.1~exp1_amd64.deb 0e7ffba9f3bd02fe1d5be5144b2ddad61a394936d77027687e6f7c01b56523cf 1103564 libaprutil1-dev_1.6.3-1.1~exp1_amd64.deb 0f5fe1d1d724c9734126f7b17ce5804029f1e28f9ebe6c3eceb6fec6e0222cfd 10556 libaprutil1-ldap-dbgsym_1.6.3-1.1~exp1_amd64.deb ca6d55ca4257e953245a2d0bb03111c8eec9018f95e07020105b851e49f0813c 11916 libaprutil1-ldap_1.6.3-1.1~exp1_amd64.deb 76aae1002804455e9f5469c066d0efac0965999594bfd9e609fcab93ef5bfe95 259680 libaprutil1t64-dbgsym_1.6.3-1.1~exp1_amd64.deb 60895196ce3c246ffd047dd766bd116ad3d50a1e9fe1ccb152a5ad489658f624 88124 libaprutil1t64_1.6.3-1.1~exp1_amd64.deb Files: 1fc315299aad344cb66994c2a026a3b1 2819 libs optional apr-util_1.6.3-1.1~exp1.dsc 1d4160640acc72724fc63653ce1cddf7 340936 libs optional apr-util_1.6.3-1.1~exp1.debian.tar.xz
apr_1.7.2-3.1~exp1_amd64.changes ACCEPTED into experimental
Thank you for your contribution to Debian. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 30 Jan 2024 00:57:26 + Source: apr Binary: libapr1-dev libapr1t64 libapr1t64-dbgsym Architecture: source amd64 Version: 1.7.2-3.1~exp1 Distribution: experimental Urgency: medium Maintainer: Debian Apache Maintainers Changed-By: Steve Langasek Description: libapr1-dev - Apache Portable Runtime Library - Development Headers libapr1t64 - Apache Portable Runtime Library Changes: apr (1.7.2-3.1~exp1) experimental; urgency=medium . * Non-maintainer upload. * Rename libraries for 64-bit time_t transition. Checksums-Sha1: f2f3abb21f94819982205f752e1e4329ec2262dd 2321 apr_1.7.2-3.1~exp1.dsc b3d2ee251a4602c54ee04f253198c351e2b392ac 54516 apr_1.7.2-3.1~exp1.debian.tar.xz dcb2e9e199d7f1c9e0a5c198ae5b5262d3ce3590 7920 apr_1.7.2-3.1~exp1_amd64.buildinfo 2a101591c73442de1ef48bb7b8a620fe95ee96d7 8599556 libapr1-dev_1.7.2-3.1~exp1_amd64.deb 59d15f9b79630965c7e4c088c7181aea9f9b50dd 279152 libapr1t64-dbgsym_1.7.2-3.1~exp1_amd64.deb 334383fd30ef35dd51fc86b412ca6f08a39fac44 102032 libapr1t64_1.7.2-3.1~exp1_amd64.deb Checksums-Sha256: eb7a42b0109e602a9e949c43bfeb524e2188a8afbc1d44dd81d0082eeb79a0c2 2321 apr_1.7.2-3.1~exp1.dsc 0dd5080a1ea26c8247249f2378f650e3dfbc7da1d76a432c7a4cd58965a3311d 54516 apr_1.7.2-3.1~exp1.debian.tar.xz 69a71d63fa0985991ccbc2c41c792b33bc9906fae7bd02b945b8a78fa5b97e6d 7920 apr_1.7.2-3.1~exp1_amd64.buildinfo d9fcd227c3dfe73149ff8750f804ca5b011fa01f5c618339821a290989e997e0 8599556 libapr1-dev_1.7.2-3.1~exp1_amd64.deb 432b628d766d04dd2b620093d665af49292b5cd1d8cf67118ccf7d68a3bde223 279152 libapr1t64-dbgsym_1.7.2-3.1~exp1_amd64.deb fb99f187a659b2d17b55eb1a6909a69ac67c0ef9f9fa256c3efbc7b5043a 102032 libapr1t64_1.7.2-3.1~exp1_amd64.deb Files: 57cd784e3ee5e6d7449bf16f98ec4686 2321 libs optional apr_1.7.2-3.1~exp1.dsc cc37757e7144181b702c07c0ce8117de 54516 libs optional apr_1.7.2-3.1~exp1.debian.tar.xz 8a3b50054b1b47ebfa7efc1eec06983b 7920 libs optional apr_1.7.2-3.1~exp1_amd64.buildinfo 4f2df7cc4face4453ff2bfd2877e1195 8599556 libdevel optional libapr1-dev_1.7.2-3.1~exp1_amd64.deb 20c11b64bc785fbd93b4644832c38297 279152 debug optional libapr1t64-dbgsym_1.7.2-3.1~exp1_amd64.deb c952ed923999b5c25ade902c08c275ad 102032 libs optional libapr1t64_1.7.2-3.1~exp1_amd64.deb -BEGIN PGP SIGNATURE- iQJGBAEBCgAwFiEErEg/aN5yj0PyIC/KVo0w8yGyEz0FAmW4SfUSHHZvcmxvbkBk ZWJpYW4ub3JnAAoJEFaNMPMhshM9uH8QAKpaVh6y89r8+86zLTt6APSIIS1Qbewt CvMkDr9FlVak6afQdYGmhOd/NLJ4OXKE7csHar4iFCzZQ4y8NyQ7tIYHMqQNmQnS lcUl0Z0dDTX9lyThBX411ELiacC6MHB3bRROm4aNvGYaarh9s+8tsISbxMzy2cuZ ba+c669UyF1JST7EoEf7CaqNEMo/WI0ce+f8AuPBWuyw5fjdIZz7FDoGzdpy83Sl 2leruak87oBBMxCA2CFcZnEVPByZKIz0ZYSBnvXljDviU2anrNMi7INfkAaIdCbi glPW0tPRDREDtiswMBmDBkazyIU06A/Yqa6U81+9KV7O9g1KqjE+Ac7ta600ex1v 4MN4BkS9jf8Jpa+2OWqvD+0mmypqMzpnVL+9Qt5qNnc2oVltkcu9uP3PK2BB5P8C urukp3BnZvfLsN/bG23IKDW3QUNT9lPlCPq7acZ26cyGLnd9oyWjzg47LgSV/kvu oaRDCv0EJERkb1cUl7zPL4IhlOGGKjrpVRwtN+31FmtnmVj7/vrakVpEgS1dw8Ya 3mekUnYk42oy717QGP1iKm7WVOCm8DBMXyyEOWZS06TzbaH6Tw5CqwXbB5VIY6GO QW5LhOYKODf0eOU+eFrquCMPawLhwcUUkfz0ggqRBDz10eoFT9Zi01vablyiMon8 j8VdRTqYTeZO =b14K -END PGP SIGNATURE-
Processing of apr_1.7.2-3.1~exp1_amd64.changes
apr_1.7.2-3.1~exp1_amd64.changes uploaded successfully to localhost along with the files: apr_1.7.2-3.1~exp1.dsc apr_1.7.2-3.1~exp1.debian.tar.xz apr_1.7.2-3.1~exp1_amd64.buildinfo libapr1-dev_1.7.2-3.1~exp1_amd64.deb libapr1t64-dbgsym_1.7.2-3.1~exp1_amd64.deb libapr1t64_1.7.2-3.1~exp1_amd64.deb Greetings, Your Debian queue daemon (running on host usper.debian.org)
Processing of apr-util_1.6.3-1.1~exp1_amd64.changes
apr-util_1.6.3-1.1~exp1_amd64.changes uploaded successfully to localhost along with the files: apr-util_1.6.3-1.1~exp1.dsc apr-util_1.6.3-1.1~exp1.debian.tar.xz apr-util_1.6.3-1.1~exp1_amd64.buildinfo libaprutil1-dbd-mysql-dbgsym_1.6.3-1.1~exp1_amd64.deb libaprutil1-dbd-mysql_1.6.3-1.1~exp1_amd64.deb libaprutil1-dbd-odbc-dbgsym_1.6.3-1.1~exp1_amd64.deb libaprutil1-dbd-odbc_1.6.3-1.1~exp1_amd64.deb libaprutil1-dbd-pgsql-dbgsym_1.6.3-1.1~exp1_amd64.deb libaprutil1-dbd-pgsql_1.6.3-1.1~exp1_amd64.deb libaprutil1-dbd-sqlite3-dbgsym_1.6.3-1.1~exp1_amd64.deb libaprutil1-dbd-sqlite3_1.6.3-1.1~exp1_amd64.deb libaprutil1-dev_1.6.3-1.1~exp1_amd64.deb libaprutil1-ldap-dbgsym_1.6.3-1.1~exp1_amd64.deb libaprutil1-ldap_1.6.3-1.1~exp1_amd64.deb libaprutil1t64-dbgsym_1.6.3-1.1~exp1_amd64.deb libaprutil1t64_1.6.3-1.1~exp1_amd64.deb Greetings, Your Debian queue daemon (running on host usper.debian.org)
Bug#1061894: apr: NMU diff for 64-bit time_t transition
Source: apr Version: 1.7.2-3 Severity: serious Tags: patch pending Justification: library ABI skew on upgrade User: debian-...@lists.debian.org Usertags: time-t Dear maintainer, As part of the 64-bit time_t transition required to support 32-bit architectures in 2038 and beyond (https://wiki.debian.org/ReleaseGoals/64bit-time), we have identified apr as a source package shipping runtime libraries whose ABI either is affected by the change in size of time_t, or could not be analyzed via abi-compliance-checker (and therefore to be on the safe side we assume is affected). To ensure that inconsistent combinations of libraries with their reverse-dependencies are never installed together, it is necessary to have a library transition, which is most easily done by renaming the runtime library package. Since turning on 64-bit time_t is being handled centrally through a change to the default dpkg-buildflags (https://bugs.debian.org/1037136), it is important that libraries affected by this ABI change all be uploaded close together in time. Therefore I have prepared a 0-day NMU for apr which will initially be uploaded to experimental if possible, then to unstable after packages have cleared binary NEW. Please find the patch for this NMU attached. If you have any concerns about this patch, please reach out ASAP. Although this package will be uploaded to experimental immediately, there will be a period of several days before we begin uploads to unstable; so if information becomes available that your package should not be included in the transition, there is time for us to amend the planned uploads. -- System Information: Debian Release: trixie/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 6.5.0-14-generic (SMP w/12 CPU threads; PREEMPT) Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE Locale: LANG=C, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) diff -Nru apr-1.7.2/debian/changelog apr-1.7.2/debian/changelog --- apr-1.7.2/debian/changelog 2023-02-26 20:51:24.0 + +++ apr-1.7.2/debian/changelog 2024-01-30 00:57:09.0 + @@ -1,3 +1,10 @@ +apr (1.7.2-3.1) experimental; urgency=medium + + * Non-maintainer upload. + * Rename libraries for 64-bit time_t transition. + + -- Steve Langasek Tue, 30 Jan 2024 00:57:09 + + apr (1.7.2-3) unstable; urgency=medium * Add more fixes for atomics from upstream, in particular for diff -Nru apr-1.7.2/debian/control apr-1.7.2/debian/control --- apr-1.7.2/debian/control2023-02-03 16:18:13.0 + +++ apr-1.7.2/debian/control2024-01-30 00:57:09.0 + @@ -19,7 +19,10 @@ Homepage: https://apr.apache.org/ Rules-Requires-Root: no -Package: libapr1 +Package: libapr1t64 +Provides: ${t64:Provides} +Replaces: libapr1 +Breaks: libapr1 (<< ${source:Version}) Architecture: any Depends: ${shlibs:Depends}, ${misc:Depends} Pre-Depends: ${misc:Pre-Depends} diff -Nru apr-1.7.2/debian/libapr1.docs apr-1.7.2/debian/libapr1.docs --- apr-1.7.2/debian/libapr1.docs 2023-02-02 21:18:42.0 + +++ apr-1.7.2/debian/libapr1.docs 1970-01-01 00:00:00.0 + @@ -1 +0,0 @@ -NOTICE diff -Nru apr-1.7.2/debian/libapr1.install apr-1.7.2/debian/libapr1.install --- apr-1.7.2/debian/libapr1.install2023-02-02 21:18:42.0 + +++ apr-1.7.2/debian/libapr1.install1970-01-01 00:00:00.0 + @@ -1 +0,0 @@ -usr/lib/*/libapr-1.so.* diff -Nru apr-1.7.2/debian/libapr1.lintian-overrides apr-1.7.2/debian/libapr1.lintian-overrides --- apr-1.7.2/debian/libapr1.lintian-overrides 2023-02-02 21:18:42.0 + +++ apr-1.7.2/debian/libapr1.lintian-overrides 1970-01-01 00:00:00.0 + @@ -1 +0,0 @@ -libapr1: package-name-doesnt-match-sonames libapr-1-0 diff -Nru apr-1.7.2/debian/libapr1.symbols apr-1.7.2/debian/libapr1.symbols --- apr-1.7.2/debian/libapr1.symbols2023-02-02 21:18:42.0 + +++ apr-1.7.2/debian/libapr1.symbols1970-01-01 00:00:00.0 + @@ -1,2 +0,0 @@ -here for the purpose of tricking debhelper...bwahahahaha. - diff -Nru apr-1.7.2/debian/libapr1t64.docs apr-1.7.2/debian/libapr1t64.docs --- apr-1.7.2/debian/libapr1t64.docs1970-01-01 00:00:00.0 + +++ apr-1.7.2/debian/libapr1t64.docs2023-02-02 21:18:42.0 + @@ -0,0 +1 @@ +NOTICE diff -Nru apr-1.7.2/debian/libapr1t64.install apr-1.7.2/debian/libapr1t64.install --- apr-1.7.2/debian/libapr1t64.install 1970-01-01 00:00:00.0 + +++ apr-1.7.2/debian/libapr1t64.install 2023-02-02 21:18:42.0 + @@ -0,0 +1 @@ +usr/lib/*/libapr-1.so.* diff -Nru apr-1.7.2/debian/libapr1t64.lintian-overrides apr-1.7.2/debian/libapr1t64.lintian-overrides --- apr-1.7.2/debian/libapr1t64.lintian-overrides 1970-01-01 00:00:00.0 + +++ apr-1.7.2/debian/libapr1t64.lintian-overrides 2024-01-30
Bug#1061893: apr-util: NMU diff for 64-bit time_t transition
Source: apr-util Version: 1.6.3-1 Severity: serious Tags: patch pending Justification: library ABI skew on upgrade User: debian-...@lists.debian.org Usertags: time-t Dear maintainer, As part of the 64-bit time_t transition required to support 32-bit architectures in 2038 and beyond (https://wiki.debian.org/ReleaseGoals/64bit-time), we have identified apr-util as a source package shipping runtime libraries whose ABI either is affected by the change in size of time_t, or could not be analyzed via abi-compliance-checker (and therefore to be on the safe side we assume is affected). To ensure that inconsistent combinations of libraries with their reverse-dependencies are never installed together, it is necessary to have a library transition, which is most easily done by renaming the runtime library package. Since turning on 64-bit time_t is being handled centrally through a change to the default dpkg-buildflags (https://bugs.debian.org/1037136), it is important that libraries affected by this ABI change all be uploaded close together in time. Therefore I have prepared a 0-day NMU for apr-util which will initially be uploaded to experimental if possible, then to unstable after packages have cleared binary NEW. Please find the patch for this NMU attached. If you have any concerns about this patch, please reach out ASAP. Although this package will be uploaded to experimental immediately, there will be a period of several days before we begin uploads to unstable; so if information becomes available that your package should not be included in the transition, there is time for us to amend the planned uploads. -- System Information: Debian Release: trixie/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 6.5.0-14-generic (SMP w/12 CPU threads; PREEMPT) Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE Locale: LANG=C, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) diff -Nru apr-util-1.6.3/debian/changelog apr-util-1.6.3/debian/changelog --- apr-util-1.6.3/debian/changelog 2023-02-03 20:15:18.0 + +++ apr-util-1.6.3/debian/changelog 2024-01-30 00:55:31.0 + @@ -1,3 +1,10 @@ +apr-util (1.6.3-1.1) experimental; urgency=medium + + * Non-maintainer upload. + * Rename libraries for 64-bit time_t transition. + + -- Steve Langasek Tue, 30 Jan 2024 00:55:31 + + apr-util (1.6.3-1) unstable; urgency=medium [ Stefan Fritsch ] diff -Nru apr-util-1.6.3/debian/control apr-util-1.6.3/debian/control --- apr-util-1.6.3/debian/control 2023-02-02 22:42:28.0 + +++ apr-util-1.6.3/debian/control 2024-01-30 00:55:31.0 + @@ -22,7 +22,10 @@ Vcs-Git: https://salsa.debian.org/apache-team/apr-util.git Homepage: https://apr.apache.org/ -Package: libaprutil1 +Package: libaprutil1t64 +Provides: ${t64:Provides} +Replaces: libaprutil1 +Breaks: libaprutil1 (<< ${source:Version}) Architecture: any Multi-Arch: same Depends: ${shlibs:Depends}, diff -Nru apr-util-1.6.3/debian/libaprutil1.docs apr-util-1.6.3/debian/libaprutil1.docs --- apr-util-1.6.3/debian/libaprutil1.docs 2023-02-01 21:35:51.0 + +++ apr-util-1.6.3/debian/libaprutil1.docs 1970-01-01 00:00:00.0 + @@ -1 +0,0 @@ -NOTICE diff -Nru apr-util-1.6.3/debian/libaprutil1.install apr-util-1.6.3/debian/libaprutil1.install --- apr-util-1.6.3/debian/libaprutil1.install 2023-02-01 21:35:51.0 + +++ apr-util-1.6.3/debian/libaprutil1.install 1970-01-01 00:00:00.0 + @@ -1,3 +0,0 @@ -usr/lib/*/libaprutil-1.so.* -usr/lib/*/apr-util-1/apr_dbm*.so* -usr/lib/*/apr-util-1/apr_crypt*.so* diff -Nru apr-util-1.6.3/debian/libaprutil1.lintian-overrides apr-util-1.6.3/debian/libaprutil1.lintian-overrides --- apr-util-1.6.3/debian/libaprutil1.lintian-overrides 2023-02-01 21:35:51.0 + +++ apr-util-1.6.3/debian/libaprutil1.lintian-overrides 1970-01-01 00:00:00.0 + @@ -1,2 +0,0 @@ -libaprutil1: symbols-declares-dependency-on-other-package -libaprutil1: package-name-doesnt-match-sonames libaprutil-1-0 diff -Nru apr-util-1.6.3/debian/libaprutil1.symbols apr-util-1.6.3/debian/libaprutil1.symbols --- apr-util-1.6.3/debian/libaprutil1.symbols 2023-02-01 21:35:51.0 + +++ apr-util-1.6.3/debian/libaprutil1.symbols 1970-01-01 00:00:00.0 + @@ -1,357 +0,0 @@ -libaprutil-1.so.0 libaprutil1 #MINVER# -| libaprutil1-ldap , libaprutil1 #MINVER# -| libaprutil1-dbd-sqlite3|libaprutil1-dbd-mysql|libaprutil1-dbd-odbc|libaprutil1-dbd-pgsql|libaprutil1-dbd-freetds , libaprutil1 #MINVER# - _crypt_blowfish_rn@Base 1.5.0 - _crypt_gensalt_blowfish_rn@Base 1.5.0 - _crypt_output_magic@Base 1.5.0 - apr__memzero_explicit@Base 1.6.0 - apr_base64_decode@Base 1.2.7+dfsg - apr_base64_decode_binary@Base 1.2.7+dfsg - apr_base64_decode_len@Base 1.2.7+dfsg -
Instalacja pv
Dzień dobry, czy są Państwo otwarci na niezobowiązującą rozmowę na temat fotowoltaiki? Jako firma specjalizująca się w instalacji i serwisie najlepszych jakościowo paneli słonecznych na rynku chciałbym przedstawić propozycję, jaką wspólnie z zespołem przygotowaliśmy dla Państwa obiektu. Będę wdzięczny za wiadomość od Państwa czy możemy porozmawiać. Pozdrawiam Konrad Zieliński
Defaulting to UTF-8 soon?
Hello, Thank you for maintaining Apache2 in Debian. Would you please consider updating the default character encoding to be UTF-8? $ diff /etc/apache2/apache2.conf /etc/apache2/apache2.conf.old 199,201d198 < # The following sets the default character encoding to UTF-8 < AddDefaultCharset UTF-8 < This would help internationalization very, very much and benefit the many downstream distros depending on Debian. Regards, Lars
Bug#599678:
Bonsoir svp je veux jouer ça ne marche pas comment je vais faire ?
Bug#1060450: apache2: Upgrade of libapache2-mod-phpX.Y does not reload apache2
Source: apache2 Version: 2.4.58-1 Severity: normal X-Debbugs-Cc: athos.ribe...@canonical.com Tags: patch When upgrading libapache2-mod-phpX.Y, its postinst script uses a trigger to try and restart apache2. However, the maintscript helper doesn't have a code path that allows this. The net result is that after updating mod-php, apache is still running with an older version of php. A fix proposal is available at https://salsa.debian.org/apache-team/apache2/-/merge_requests/40 See also: https://bugs.launchpad.net/ubuntu/+source/php8.1/+bug/2038912
Bug#1057126: "AH03490: scoreboard is full" after nightly maintenance
Hi! Stefan Fritsch: Some processes are in "stopping" state but are not dying. They accumulate until the scoreboard is full. First you should verify with ps if the processes with the PIDs in the "(old gen)" lines still exist. If not, it is a bug in apache itself (probably in mpm_event). They do indeed still exist in the process table. Just looking at the command lines doesn't tell me much as they are all apache2 forks/threads, but see below: # apachectl status 2>&1 |awk '/old gen/ { print "tr \"\\0\" \" \" < /proc/" $2 "/cmdline; echo" }' | sh /usr/sbin/apache2 -k start /usr/sbin/apache2 -k start /usr/sbin/apache2 -k start /usr/sbin/apache2 -k start /usr/sbin/apache2 -k start /usr/sbin/apache2 -k start If they do, one needs to find out why they are not dying. This is likely the fault of some module. The server is running Trac with its default configuration, there might be something that has changed there? # dpkg -l trac Desired=Unknown/Install/Remove/Purge/Hold | Status=Not/Inst/Conf-files/Unpacked/halF-conf/Half-inst/trig-aWait/Tri |/ Err?=(none)/Reinst-required (Status,Err: uppercase=bad) ||/ Name Version Architecture Description +++-==---=== ii trac 1.6-2all Enhanced wiki and issue tra The processes do indeed seem to be from Trac, here is one example: # ls -l /proc/210869/fd total 0 lr-x-- 1 root root 64 dec 14 09:19 0 -> /dev/null l-wx-- 1 root root 64 dec 14 09:19 1 -> /dev/null lrwx-- 1 root root 64 dec 14 09:19 10 -> 'anon_inode:[eventpoll]' lr-x-- 1 root root 64 dec 14 09:19 11 -> 'pipe:[35832724]' l-wx-- 1 root root 64 dec 14 09:19 12 -> 'pipe:[35832724]' l-wx-- 1 root root 64 dec 14 09:19 14 -> /srv/trac/log/trac.log lrwx-- 1 root root 64 dec 14 09:19 18 -> /srv/trac/db/trac.db l-wx-- 1 root root 64 dec 14 09:19 2 -> '/var/log/apache2/error.log.1 (deleted)' lrwx-- 1 root root 64 dec 14 09:19 21 -> /srv/trac/db/trac.db lrwx-- 1 root root 64 dec 14 09:19 3 -> 'socket:[35833027]' lr-x-- 1 root root 64 dec 14 09:19 5 -> 'pipe:[35832707]' l-wx-- 1 root root 64 dec 14 09:19 6 -> 'pipe:[35832707]' l-wx-- 1 root root 64 dec 14 09:19 7 -> /var/log/apache2/other_vhosts_access.log l-wx-- 1 root root 64 dec 14 09:19 8 -> '/var/log/apache2/access.log.1 (deleted)' l-wx-- 1 root root 64 dec 14 09:19 9 -> '/var/log/apache2/access.log.1 (deleted)' Should I reassign the bug to Trac instead? -- \\// Peter - http://www.softwolves.pp.se/
Hiring a Programmer
Dear Sir/Madam, In the face of challenging market conditions, companies strive to develop their IT projects and scale their business while simultaneously limiting costs. We offer flexible solutions that allow you to achieve these goals without the need to hire permanent employees. Our team consists of 140 programmers with versatile technological competencies ready to take action. We provide comprehensive end-to-end support, assisting you at every stage of digitization, from project workshops to implementation, testing, and maintenance. You can start and end cooperation with us at any time. With rich experience in the German market, we have collaborated with clients from various industries such as manufacturing, Industry 4.0, finance, automotive, and education. 95% of our clients come from the DACH countries. Are you interested in finding out if our specialists meet your requirements? Best regards Christian Lerche
Bug#1057126: "AH03490: scoreboard is full" after nightly maintenance
Hi, Am 30.11.23 um 09:05 schrieb Peter Krefting: we are experiencing that the Apache httpd locks up, filling the error.log with errors after the nightly maintenance (not every night, though): [Wed Nov 29 00:00:01.922731 2023] [mpm_event:notice] [pid 62346:tid 139841215223680] AH00489: Apache/2.4.57 (Debian) mod_wsgi/4.9.4 Python/3.11 configured -- resuming normal operations [Wed Nov 29 00:00:01.922790 2023] [core:notice] [pid 62346:tid 139841215223680] AH00094: Command line: '/usr/sbin/apache2' [Wed Nov 29 00:00:03.924683 2023] [mpm_event:error] [pid 62346:tid 139841215223680] AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit. [Wed Nov 29 00:00:04.925780 2023] [mpm_event:error] [pid 62346:tid 139841215223680] AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit. (etc) I set up a nightly job to mail me the output of "apachectl status", and this is the contents reported at Nov 29 00:00:00, i.e. just before the nightly maintenance: Some processes are in "stopping" state but are not dying. They accumulate until the scoreboard is full. First you should verify with ps if the processes with the PIDs in the "(old gen)" lines still exist. If not, it is a bug in apache itself (probably in mpm_event). If they do, one needs to find out why they are not dying. This is likely the fault of some module. Third-party modules that do not come with apache itself are more likely to be the culprit. Since you are using mod_wsgi, that is a likely candidate. Look in the error log for the last log lines of the processes with those PIDs. Maybe that gives some hint. Or maybe mod_wsgi writes some logs itself, I am not familiar with that one. Apache Server Status for localhost (via ::1) Server Version: Apache/2.4.57 (Debian) mod_wsgi/4.9.4 Python/3.11 Server MPM: event Server Built: 2023-04-13T03:26:51 __ Current Time: Wednesday, 29-Nov-2023 00:00:01 CET Restart Time: Tuesday, 21-Nov-2023 08:51:55 CET Parent Server Config. Generation: 8 Parent Server MPM Generation: 7 Server uptime: 7 days 15 hours 8 minutes 6 seconds Server load: 0.01 0.02 0.00 Total accesses: 34860 - Total Traffic: 717.8 MB - Total Duration: 2289464 CPU Usage: u297.08 s30.61 cu.01 cs.07 - .0497% CPU load .0529 requests/sec - 1141 B/second - 21.1 kB/request - 65.676 ms/request 2 requests currently being processed, 48 idle workers Slot PID Stopping Connections Threads Async connections total accepting busy idle writing keep-alive closing 0 62348 yes (old gen) 0 no 0 0 0 0 0 1 62350 yes (old gen) 0 no 0 0 0 0 0 2 66497 yes (old gen) 0 no 0 0 0 0 0 3 66498 yes (old gen) 0 no 0 0 0 0 0 4 73089 yes (old gen) 0 no 0 0 0 0 0 5 73090 yes (old gen) 0 no 0 0 0 0 0 6 79644 yes (old gen) 0 no 0 0 0 0 0 7 79645 yes (old gen) 0 no 0 0 0 0 0 8 86126 yes (old gen) 0 no 0 0 0 0 0 9 86127 yes (old gen) 0 no 0 0 0 0 0 10 92669 yes (old gen) 0 no 0 0 0 0 0 11 92670 yes (old gen) 0 no 0 0 0 0 0 12 99203 yes (old gen) 0 no 0 0 0 0 0 13 99204 yes (old gen) 0 no 0 0 0 0 0 14 105761 no 0 yes 0 25 0 0 0 15 105762 no 0 yes 2 23 0 0 0 Sum 16 14 0 2 48 0 0 0 .._W W___ Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process '/usr/bin/lynx -dump http://localhost:80/server-status' failed. Maybe you need to install a package providing www-browser or you need to adjust the APACHE_LYNX variable in /etc/apache2/envvars Cheers, Stefan
Bug#1057126: found 1057126 2.4.58-1
found 1057126 2.4.58-1 thanks Still present in 2.4.58-1 from testing. It was running fine since 2023-11-30 until midnight 2023-12-08. [Fri Dec 08 00:00:02.485510 2023] [mpm_event:notice] [pid 123558:tid 140621062399872] AH00489: Apache/2.4.58 (Debian) mod_wsgi/4.9.4 Python/3.11 configured -- resuming normal operations [Fri Dec 08 00:00:02.485594 2023] [core:notice] [pid 123558:tid 140621062399872] AH00094: Command line: '/usr/sbin/apache2' [Fri Dec 08 00:00:04.487814 2023] [mpm_event:error] [pid 123558:tid 140621062399872] AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit. [Fri Dec 08 00:00:05.488946 2023] [mpm_event:error] [pid 123558:tid 140621062399872] AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit. (...and so on until restarted...) This is the output of apachectl status just before deadlock: Apache Server Status for localhost (via ::1) Server Version: Apache/2.4.58 (Debian) mod_wsgi/4.9.4 Python/3.11 Server MPM: event Server Built: 2023-10-19T10:56:29 __ Current Time: Friday, 08-Dec-2023 00:00:01 CET Restart Time: Thursday, 30-Nov-2023 09:12:39 CET Parent Server Config. Generation: 8 Parent Server MPM Generation: 7 Server uptime: 7 days 14 hours 47 minutes 22 seconds Server load: 0.00 0.00 0.00 Total accesses: 33931 - Total Traffic: 704.1 MB - Total Duration: 2032773 CPU Usage: u273.86 s30.97 cu0 cs0 - .0463% CPU load .0516 requests/sec - 1121 B/second - 21.2 kB/request - 59.909 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers Slot PID Stopping Connections Threads Async connections total accepting busy graceful idle writing keep-alive closing 0 123559 yes (old gen) 0 no 0 0 0 0 0 0 1 123561 yes (old gen) 0 no 0 0 0 0 0 0 2 130244 yes (old gen) 0 no 0 0 0 0 0 0 3 130245 yes (old gen) 0 no 0 0 0 0 0 0 4 136773 yes (old gen) 0 no 0 0 0 0 0 0 5 136774 yes (old gen) 0 no 0 0 0 0 0 0 6 143347 yes (old gen) 0 no 0 0 0 0 0 0 7 143348 yes (old gen) 0 no 0 0 0 0 0 0 8 149859 yes (old gen) 0 no 0 0 0 0 0 0 9 149860 yes (old gen) 0 no 0 0 0 0 0 0 10 156457 yes (old gen) 0 no 0 0 0 0 0 0 11 156458 yes (old gen) 0 no 0 0 0 0 0 0 12 163598 yes (old gen) 0 no 0 0 0 0 0 0 13 163599 yes (old gen) 0 no 0 0 0 0 0 0 14 170137 no 0 yes 0 0 25 0 0 0 15 170138 no 0 yes 1 0 24 0 0 0 Sum 16 14 0 1 0 49 0 0 0 ..__ _W__ Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process '/usr/bin/lynx -dump http://localhost:80/server-status' failed. Maybe you need to install a package providing www-browser or you need to adjust the APACHE_LYNX variable in /etc/apache2/envvars -- \\// Peter - http://www.softwolves.pp.se/
Processed: found 1057126 2.4.58-1
Processing commands for cont...@bugs.debian.org: > found 1057126 2.4.58-1 Bug #1057126 [apache2] "AH03490: scoreboard is full" after nightly maintenance Marked as found in versions apache2/2.4.58-1. > thanks Stopping processing here. Please contact me if you need assistance. -- 1057126: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1057126 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems