Nabble - Debian Security

Itec - Ovh - Mise à jour du serveur

2009-11-17T09:44:31Z

Stéph

-----Message d'origine-----
De : Stefan Fritsch [mailto:sf@...] De la part de Stefan
Fritsch
Envoyé : lundi 16 novembre 2009 20:31
À : debian-security-announce@...
Objet : [SECURITY] [DSA-1934-1] New apache2 packages fix several issues

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
Debian Security Advisory DSA-1934-1 security@...
http://www.debian.org/security/ Stefan Fritsch
November 16, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------

Package : apache2
Vulnerability : multiple issues
Problem type : remote
Debian-specific: no
CVE Id(s) : CVE-2009-3094 CVE-2009-3095 CVE-2009-3555

A design flaw has been found in the TLS and SSL protocol that allows
an attacker to inject arbitrary content at the beginning of a TLS/SSL
connection. The attack is related to the way how TLS and SSL handle
session renegotiations. CVE-2009-3555 has been assigned to this
vulnerability.

As a partial mitigation against this attack, this apache2 update
disables client-initiated renegotiations. This should fix the
vulnerability for the majority of Apache configurations in use.

NOTE: This is not a complete fix for the problem. The attack is
still possible in configurations where the server initiates the
renegotiation. This is the case for the following configurations
(the information in the changelog of the updated packages is
slightly inaccurate):

- - The "SSLVerifyClient" directive is used in a Directory or Location
context.
- - The "SSLCipherSuite" directive is used in a Directory or Location
context.

As a workaround, you may rearrange your configuration in a way that
SSLVerifyClient and SSLCipherSuite are only used on the server or
virtual host level.

A complete fix for the problem will require a protocol change. Further
information will be included in a separate announcement about this
issue.

In addition, this update fixes the following issues in Apache's
mod_proxy_ftp:

CVE-2009-3094: Insufficient input validation in the mod_proxy_ftp
module allowed remote FTP servers to cause a denial of service (NULL
pointer dereference and child process crash) via a malformed reply to
an EPSV command.

CVE-2009-3095: Insufficient input validation in the mod_proxy_ftp
module allowed remote authenticated attackers to bypass intended access
restrictions and send arbitrary FTP commands to an FTP server.

For the stable distribution (lenny), these problems have been fixed in
version 2.2.9-10+lenny6. This version also includes some non-security
bug fixes that were scheduled for inclusion in the next stable point
release (Debian 5.0.4).

The oldstable distribution (etch), these problems have been fixed in
version 2.2.3-4+etch11.

For the testing distribution (squeeze) and the unstable distribution
(sid), these problems will be fixed in version 2.2.14-2.

This advisory also provides updated apache2-mpm-itk packages which
have been recompiled against the new apache2 packages.

Updated apache2-mpm-itk packages for the armel architecture are not
included yet. They will be released as soon as they become available.

We recommend that you upgrade your apache2 and apache2-mpm-itk packages.

Upgrade instructions
- --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian GNU/Linux 4.0 alias etch (oldstable)
- -------------------------------------------

Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64,
mips, mipsel, powerpc, s390 and sparc.

Source archives:

http://security.debian.org/pool/updates/main/a/apache2/apache2_2.2.3-4+etch1
1.dsc
Size/MD5 checksum: 1071 dff8f31d88ede35bb87f92743d2db202

http://security.debian.org/pool/updates/main/a/apache2/apache2_2.2.3.orig.ta
r.gz
Size/MD5 checksum: 6342475 f72ffb176e2dc7b322be16508c09f63c

http://security.debian.org/pool/updates/main/a/apache2/apache2_2.2.3-4+etch1
1.diff.gz
Size/MD5 checksum: 124890 c9b197b2a4bade4e92f3c65b88eea614

Architecture independent packages:

http://security.debian.org/pool/updates/main/a/apache2/apache2-doc_2.2.3-4+e
tch11_all.deb
Size/MD5 checksum: 2247064 357f2daba8360eaf00b0157326c4d258

http://security.debian.org/pool/updates/main/a/apache2/apache2-src_2.2.3-4+e
tch11_all.deb
Size/MD5 checksum: 6668542 043a6a14dc48aae5fa8101715f4ddf81

http://security.debian.org/pool/updates/main/a/apache2/apache2_2.2.3-4+etch1
1_all.deb
Size/MD5 checksum: 41626 27661a99c55641d534a5ffe4ea828c4b

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-perchild_
2.2.3-4+etch11_all.deb
Size/MD5 checksum: 275872 8ff0ac120a46e235a9253df6be09e4d5

alpha architecture (DEC Alpha)

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.3-4
+etch11_alpha.deb
Size/MD5 checksum: 346016 02b337e48ef627e13d79ad3919bc380d

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.3-4+etch11_alpha.deb
Size/MD5 checksum: 407682 f01d7e23f206baed1e42c60e15fe240f

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
3-4+etch11_alpha.deb
Size/MD5 checksum: 1017408 1c8dccbed0a309ed0b74b83667f1d587

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.3-4+etch11_alpha.deb
Size/MD5 checksum: 449704 b227ff8c9bceaa81488fec48b81f18f6

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.3-4+etch11_alpha.deb
Size/MD5 checksum: 450266 766ba095925ee31c175716084f41b3cf

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.3-4+etch11_alpha.deb
Size/MD5 checksum: 444898 3b1d9a9531c82872d36ce295d6cba581

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.3-4+etch11_alpha.deb
Size/MD5 checksum: 407030 eedabbc4930b3c14012f57ec7956847b

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.3-01-2+etch4+b1_alpha.deb
Size/MD5 checksum: 184920 2d152290678598aeacd32564c2ec37c2

amd64 architecture (AMD x86_64 (AMD64))

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.3-4+etch11_amd64.deb
Size/MD5 checksum: 409010 15d5dda7eb1e9e8d406cd9ff4b25e60f

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.3-4+etch11_amd64.deb
Size/MD5 checksum: 408330 0bf271280295146f4ded8c02335e8fc1

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
3-4+etch11_amd64.deb
Size/MD5 checksum: 1000068 f92b3deafb9ce263d0d66b753231a003

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.3-4+etch11_amd64.deb
Size/MD5 checksum: 436268 9ef6b02f0ecf9905c14114a464c86f80

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.3-4+etch11_amd64.deb
Size/MD5 checksum: 432320 b734b0c2f1d2177a828cff7d8e34d17c

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.3-4
+etch11_amd64.deb
Size/MD5 checksum: 342152 ef061f914027b41b788a31758d7c4e96

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.3-4+etch11_amd64.deb
Size/MD5 checksum: 436766 deb97a3637ae8be3e016e37c038bc470

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.3-01-2+etch4+b1_amd64.deb
Size/MD5 checksum: 172802 0550f661c804ef0c0ec31e1928f5f97d

arm architecture (ARM)

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.3-4+etch11_arm.deb
Size/MD5 checksum: 421056 b55b215aee8398e6388a73b421229db7

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.3-4+etch11_arm.deb
Size/MD5 checksum: 408940 8782732ef6487ef268abf2856ec5e2c0

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.3-4+etch11_arm.deb
Size/MD5 checksum: 408140 f3627e52eaf7a011a5a624ea25fa058b

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
3-4+etch11_arm.deb
Size/MD5 checksum: 968448 ac1354c562e7969e47561f4cba3a859b

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.3-4
+etch11_arm.deb
Size/MD5 checksum: 346166 a8729d03737330075908c2b8b2f5ce0b

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.3-01-2+etch4+b1_arm.deb
Size/MD5 checksum: 157634 53c277ca7e52e7e60a523183e87beec3

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.3-4+etch11_arm.deb
Size/MD5 checksum: 421782 b17f7ce0bfd6fee4877d9bccaf82770e

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.3-4+etch11_arm.deb
Size/MD5 checksum: 417026 03b845039bf49fba64f064acda350f43

hppa architecture (HP PA RISC)

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.3-4+etch11_hppa.deb
Size/MD5 checksum: 444058 16fb9ac5807fcf161321ffc8467e963d

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.3-01-2+etch4+b1_hppa.deb
Size/MD5 checksum: 179532 b1f7b89ac1e830b72e30c9476b813263

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.3-4
+etch11_hppa.deb
Size/MD5 checksum: 352116 f34f19a1bf40a37695ac0aeb3f5b6d10

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.3-4+etch11_hppa.deb
Size/MD5 checksum: 443324 e7106e9195fcd9f34ced7bccb009cbb7

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
3-4+etch11_hppa.deb
Size/MD5 checksum: 1078948 29a60062b3f7676f768dda1d4cdb78fd

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.3-4+etch11_hppa.deb
Size/MD5 checksum: 439968 6ff5b95ba06596c04f2fc7dc3adac7ac

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.3-4+etch11_hppa.deb
Size/MD5 checksum: 410880 28ce1d24c4e152624c38330d34781636

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.3-4+etch11_hppa.deb
Size/MD5 checksum: 409994 2ce21d9fc51fbbeb5e05ac7c418d7e11

i386 architecture (Intel ia32)

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.3-4+etch11_i386.deb
Size/MD5 checksum: 409776 04bafa059e90c14851f290c02fc7a29e

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
3-4+etch11_i386.deb
Size/MD5 checksum: 963818 f2755fd250837dd878a24ffc8527855d

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.3-4+etch11_i386.deb
Size/MD5 checksum: 425034 fc0b075a77853494886719b1bf4d7092

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.3-4+etch11_i386.deb
Size/MD5 checksum: 421206 d2758678dc6dcfb2298a5e69dbd199d0

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.3-4+etch11_i386.deb
Size/MD5 checksum: 425510 5df035120241567d62ba4154a7ade25f

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.3-01-2+etch4+b1_i386.deb
Size/MD5 checksum: 161256 614f006996e6309829bf7c80bb95e3ed

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.3-4+etch11_i386.deb
Size/MD5 checksum: 410518 833b5256083de5f76d83354f63916af2

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.3-4
+etch11_i386.deb
Size/MD5 checksum: 343876 435638e472ccb187c7713f96840cf156

ia64 architecture (Intel ia64)

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.3-4+etch11_ia64.deb
Size/MD5 checksum: 407664 9929d570df08ea81c10235d8cfad8cec

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.3-01-2+etch4+b1_ia64.deb
Size/MD5 checksum: 231808 505ed0109a851680126951f228f4ed40

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.3-4+etch11_ia64.deb
Size/MD5 checksum: 491120 d1ef23e9bbd457b1c30d50234050b112

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.3-4+etch11_ia64.deb
Size/MD5 checksum: 498202 f430c9b4231122f996799b45d68596a3

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.3-4+etch11_ia64.deb
Size/MD5 checksum: 407018 f721b04b90b8b2b5ec76916488395bdd

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.3-4
+etch11_ia64.deb
Size/MD5 checksum: 360664 08763e41786b3c5b28cf3e27d234419d

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.3-4+etch11_ia64.deb
Size/MD5 checksum: 497388 6ef80d442fbf5046e78b9b2a0637adb9

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
3-4+etch11_ia64.deb
Size/MD5 checksum: 1204566 d1cc5f38e5683c539db6673611585b67

mips architecture (MIPS (Big Endian))

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.3-4+etch11_mips.deb
Size/MD5 checksum: 430112 01c3cf5fc888bff3967c95736b3caf40

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.3-4+etch11_mips.deb
Size/MD5 checksum: 407674 688656128f0f46e8b35da61d731e244f

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.3-4+etch11_mips.deb
Size/MD5 checksum: 434122 791a223b58a6a3a00fdd5517decc6ff2

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
3-4+etch11_mips.deb
Size/MD5 checksum: 951736 68a93c433a24dd42b461907c2b61c6d2

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.3-4+etch11_mips.deb
Size/MD5 checksum: 407022 10cf7a6fa3ad60183a80b7fddc08ed98

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.3-4
+etch11_mips.deb
Size/MD5 checksum: 350066 ab3498abf9ddc41f0665be9c2912beab

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.3-4+etch11_mips.deb
Size/MD5 checksum: 434784 2d07f9376a7c7eb6229e0c5238e604fc

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.3-01-2+etch4+b1_mips.deb
Size/MD5 checksum: 169932 db0ecd6b89594ecbff3bacd9d184f808

mipsel architecture (MIPS (Little Endian))

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.3-4+etch11_mipsel.deb
Size/MD5 checksum: 428958 3c7b9e69ccbeb0db17d437ece3717b65

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.3-4+etch11_mipsel.deb
Size/MD5 checksum: 407040 61a67a76dd0acfaeb747d5ee745cb3fa

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.3-4+etch11_mipsel.deb
Size/MD5 checksum: 433736 74adf126949edfd4b1af734b3a8255f8

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
3-4+etch11_mipsel.deb
Size/MD5 checksum: 951730 3c9d5a12163e7d1c939d26829a4454f1

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.3-4+etch11_mipsel.deb
Size/MD5 checksum: 407694 0297490b8b4aff5e1a4527a9c897fbee

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.3-4
+etch11_mipsel.deb
Size/MD5 checksum: 350302 843a3c227ba43dc4b882c96cad62a6eb

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.3-4+etch11_mipsel.deb
Size/MD5 checksum: 434220 b18b6688a18a11d7bfa20d486c13ae64

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.3-01-2+etch4+b1_mipsel.deb
Size/MD5 checksum: 168814 6eedc4fb9e8027cf6d11c427a1cc4f8c

powerpc architecture (PowerPC)

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
3-4+etch11_powerpc.deb
Size/MD5 checksum: 1061292 0a43b7054755c361229d5e14db9c3156

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.3-4+etch11_powerpc.deb
Size/MD5 checksum: 432806 ebe9b3113da3361dabf67acd291f9d93

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.3-01-2+etch4+b1_powerpc.deb
Size/MD5 checksum: 168374 ab7eb4de4a4c224a94698ebb67f627ea

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.3-4+etch11_powerpc.deb
Size/MD5 checksum: 433416 0c53941e7e8765780e4e4a71f81a592b

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.3-4
+etch11_powerpc.deb
Size/MD5 checksum: 354920 0682a419e0d59ff5a2af1f322991b157

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.3-4+etch11_powerpc.deb
Size/MD5 checksum: 410150 69ddc8b0b8ec235e65eabde0adbc1db7

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.3-4+etch11_powerpc.deb
Size/MD5 checksum: 428826 f556fd9726b4c66bbe6fdc05b84d9918

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.3-4+etch11_powerpc.deb
Size/MD5 checksum: 409396 d4b779470977873916bff7353829f172

s390 architecture (IBM S/390)

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.3-4+etch11_s390.deb
Size/MD5 checksum: 437364 0d844765789f2fcc4cf0c24e755b4c3d

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
3-4+etch11_s390.deb
Size/MD5 checksum: 994710 63d476187cc9eed384ff792ce8b6f471

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.3-4+etch11_s390.deb
Size/MD5 checksum: 443278 114375b6439d8a9cf344dd4829c7b6d2

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.3-4+etch11_s390.deb
Size/MD5 checksum: 407682 e0db3031b4bb381a0f3178569d4c514a

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.3-4+etch11_s390.deb
Size/MD5 checksum: 442268 219d9f7f67d2a53a3c3e700c68a6d682

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.3-4
+etch11_s390.deb
Size/MD5 checksum: 348624 ac97c9840e0cb11a1cf1e44fd1875015

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.3-4+etch11_s390.deb
Size/MD5 checksum: 407026 6233c65e8860b416d7a6265ae2c2eda4

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.3-01-2+etch4+b1_s390.deb
Size/MD5 checksum: 177986 634687237fd58d539bc9492415a94b77

sparc architecture (Sun SPARC/UltraSPARC)

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.3-4+etch11_sparc.deb
Size/MD5 checksum: 418896 96bdf44ad9d8c1d86ee3aaf383c9dcce

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.3-4+etch11_sparc.deb
Size/MD5 checksum: 412078 c9aab17ccba1846ea02df78f636a28a6

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.3-4
+etch11_sparc.deb
Size/MD5 checksum: 342696 7dd353d553f6a495c506b22f60ff2a0d

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.3-01-2+etch4+b1_sparc.deb
Size/MD5 checksum: 158054 60de9a240c905bdb6ffa0ab6c032096d

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.3-4+etch11_sparc.deb
Size/MD5 checksum: 422966 edb7194c73d08c0bdb1eed6bd19ceb53

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.3-4+etch11_sparc.deb
Size/MD5 checksum: 422444 ad0a85ada33d687e1fc67b0fa3c40244

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
3-4+etch11_sparc.deb
Size/MD5 checksum: 960150 0dae013a3e07502409918ff649cb1375

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.3-4+etch11_sparc.deb
Size/MD5 checksum: 411290 88e769a08329b6728c6fd0770d241874

Debian GNU/Linux 5.0 alias lenny (stable)
- -----------------------------------------

Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64,
mips, mipsel, powerpc, s390 and sparc.

Source archives:

http://security.debian.org/pool/updates/main/a/apache2/apache2_2.2.9.orig.ta
r.gz
Size/MD5 checksum: 6396996 80d3754fc278338033296f0d41ef2c04

http://security.debian.org/pool/updates/main/a/apache2/apache2_2.2.9-10+lenn
y6.dsc
Size/MD5 checksum: 1673 f6846ac2d9cbd7887629a9c503154310

http://security.debian.org/pool/updates/main/a/apache2/apache2_2.2.9-10+lenn
y6.diff.gz
Size/MD5 checksum: 145719 fd456ef168b7f1ca1055ffbca1df53db

Architecture independent packages:

http://security.debian.org/pool/updates/main/a/apache2/apache2-doc_2.2.9-10+
lenny6_all.deb
Size/MD5 checksum: 2060318 c2499fa1040a9ace89c1a969de4db870

http://security.debian.org/pool/updates/main/a/apache2/apache2-src_2.2.9-10+
lenny6_all.deb
Size/MD5 checksum: 6736558 e09131a305cf2e51d3c14ed7c1beaf5d

http://security.debian.org/pool/updates/main/a/apache2/apache2_2.2.9-10+lenn
y6_all.deb
Size/MD5 checksum: 45238 922ce7e9d14885bab9c9cbbfab99fbd3

alpha architecture (DEC Alpha)

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.9-10+lenny6_alpha.deb
Size/MD5 checksum: 209720 29861b61a3ae0912a7eb1ba2096b0421

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec-custom
_2.2.9-10+lenny6_alpha.deb
Size/MD5 checksum: 84444 af60f321516a06fc9588433ba2c1a88e

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.9-10+lenny6_alpha.deb
Size/MD5 checksum: 256598 730d50c0f57ba7aad84e6897217bf42d

http://security.debian.org/pool/updates/main/a/apache2/apache2-dbg_2.2.9-10+
lenny6_alpha.deb
Size/MD5 checksum: 2402082 b932e642a152e30f948437d7313d2dcf

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec_2.2.9-
10+lenny6_alpha.deb
Size/MD5 checksum: 82728 bb04bbeae7865acad1ae89e943702623

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.6-02-1+lenny2+b2_alpha.deb
Size/MD5 checksum: 198236 61b2f1529a056145d9ea8a87c5c5e8c0

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.9-10+lenny6_alpha.deb
Size/MD5 checksum: 208690 f6d15e0b6fa15a3738e9130b4044ce37

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
9-10+lenny6_alpha.deb
Size/MD5 checksum: 849014 dddd323a55b010c29a8626194b71a7a1

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.9-1
0+lenny6_alpha.deb
Size/MD5 checksum: 147844 40f11b60e0f5154680f16c1c67943101

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.9-10+lenny6_alpha.deb
Size/MD5 checksum: 261662 7b88269d9ce2877809a0f47daa4e756d

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.9-10+lenny6_alpha.deb
Size/MD5 checksum: 262336 eced46181f89a7f8ee636c0dce4789f7

amd64 architecture (AMD x86_64 (AMD64))

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.9-10+lenny6_amd64.deb
Size/MD5 checksum: 210246 bb629f54f383bfcce66a6bf0bc1a2b6d

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
9-10+lenny6_amd64.deb
Size/MD5 checksum: 825462 051201fb8baa9a7a961961dd5082929a

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.9-10+lenny6_amd64.deb
Size/MD5 checksum: 257694 3b8c5bff06a870ccd062ce53771a43a4

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.9-10+lenny6_amd64.deb
Size/MD5 checksum: 211268 5e07756440fecd3a3ee3815a6cff3ff5

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.9-10+lenny6_amd64.deb
Size/MD5 checksum: 258424 92c5467fbef1d4da6803507b679df099

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec_2.2.9-
10+lenny6_amd64.deb
Size/MD5 checksum: 82532 40718aa8ebb6532404fad4b5ee2a1e09

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec-custom
_2.2.9-10+lenny6_amd64.deb
Size/MD5 checksum: 84140 743b1e0fd988539a7346bddbcd573767

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.9-10+lenny6_amd64.deb
Size/MD5 checksum: 253708 bcc5c9f767c1e62913af45827f04b83f

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.6-02-1+lenny2+b2_amd64.deb
Size/MD5 checksum: 195214 42f4650b895a51b853c253bbbd1e2cc0

http://security.debian.org/pool/updates/main/a/apache2/apache2-dbg_2.2.9-10+
lenny6_amd64.deb
Size/MD5 checksum: 2455308 9b8792a5defa5193d825d31dc47b43f2

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.9-1
0+lenny6_amd64.deb
Size/MD5 checksum: 144980 240232c2f4932579c60ecee786c0af26

arm architecture (ARM)

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.9-10+lenny6_arm.deb
Size/MD5 checksum: 224760 9615e8207a01d2759de57b58cd885286

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec-custom
_2.2.9-10+lenny6_arm.deb
Size/MD5 checksum: 83230 c840cb7342a3a83e0587fd3baacce760

http://security.debian.org/pool/updates/main/a/apache2/apache2-dbg_2.2.9-10+
lenny6_arm.deb
Size/MD5 checksum: 2327178 39819fd5f56728620aaefdbe10887c2b

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.9-1
0+lenny6_arm.deb
Size/MD5 checksum: 147202 f7ebf064272389cf2dd7db7bfe3ff267

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.6-02-1+lenny2+b2_arm.deb
Size/MD5 checksum: 161596 b7a2763998f12394ecae68df6ec73fbb

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.9-10+lenny6_arm.deb
Size/MD5 checksum: 223898 fbd3f6bc3340643f55862e5b14947345

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
9-10+lenny6_arm.deb
Size/MD5 checksum: 786918 a142a6fbee216aaa87378bdc53773eb2

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.9-10+lenny6_arm.deb
Size/MD5 checksum: 209812 2e4b61b494abdd8e52b219456a82e499

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.9-10+lenny6_arm.deb
Size/MD5 checksum: 219946 4ac3564788d25b492a833e2df463b41e

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec_2.2.9-
10+lenny6_arm.deb
Size/MD5 checksum: 81412 abe1efff8619aac89534c3f4d57c5356

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.9-10+lenny6_arm.deb
Size/MD5 checksum: 211008 865b518f1a18de1020feb2212b137a6c

armel architecture (ARM EABI)

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.9-10+lenny6_armel.deb
Size/MD5 checksum: 212612 2b8654bdda7346a2a7804800e9a11d8e

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
9-10+lenny6_armel.deb
Size/MD5 checksum: 802766 535b466511548a5264b0da3a3a348381

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.9-10+lenny6_armel.deb
Size/MD5 checksum: 226068 8921ab3294cf45178f3b90fd51fbafc3

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.9-10+lenny6_armel.deb
Size/MD5 checksum: 213694 38498cbd15341da4279e4193a4708c6c

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.9-10+lenny6_armel.deb
Size/MD5 checksum: 226354 57f22f55c3ca485b5974e1f2a4ef1414

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec-custom
_2.2.9-10+lenny6_armel.deb
Size/MD5 checksum: 83934 6a6a2de840f638874d8ae05611f142b9

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec_2.2.9-
10+lenny6_armel.deb
Size/MD5 checksum: 82284 b225eb7806650013baccae619ad08f2b

http://security.debian.org/pool/updates/main/a/apache2/apache2-dbg_2.2.9-10+
lenny6_armel.deb
Size/MD5 checksum: 2340926 83bb45aa97542f6f796780c8a2d24c8b

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.9-10+lenny6_armel.deb
Size/MD5 checksum: 221894 872e3f1df2080a84cca36f48e6c8e575

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.9-1
0+lenny6_armel.deb
Size/MD5 checksum: 151226 3172e8ba667991da2881ea6a7b2781cc

hppa architecture (HP PA RISC)

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec-custom
_2.2.9-10+lenny6_hppa.deb
Size/MD5 checksum: 84022 f603a1c369bbc7d05efe1ad99325e020

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.9-1
0+lenny6_hppa.deb
Size/MD5 checksum: 153048 0568fcb47c9cad398c7fd7abe2276828

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec_2.2.9-
10+lenny6_hppa.deb
Size/MD5 checksum: 82214 f27d31e710ba6640471c47a6fc240aad

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.9-10+lenny6_hppa.deb
Size/MD5 checksum: 246406 f18257777ba62d65ceb3aa4842415c74

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.9-10+lenny6_hppa.deb
Size/MD5 checksum: 241578 e71e710d7889e79b85e4c20b539a4d26

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.9-10+lenny6_hppa.deb
Size/MD5 checksum: 211730 a9913999aac5559db1e75835d87a2efd

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
9-10+lenny6_hppa.deb
Size/MD5 checksum: 896810 e8e2d9459750e5d9be76c00923a25696

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.9-10+lenny6_hppa.deb
Size/MD5 checksum: 245816 6a876fb502903c7bfcb5a4b8dad71a7a

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.9-10+lenny6_hppa.deb
Size/MD5 checksum: 213028 f072f0ca44edc122c1b3e1da847f1c8c

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.6-02-1+lenny2+b2_hppa.deb
Size/MD5 checksum: 183316 41a32b0fd061c4f2afbd740af5e8325a

http://security.debian.org/pool/updates/main/a/apache2/apache2-dbg_2.2.9-10+
lenny6_hppa.deb
Size/MD5 checksum: 2385020 366e6e9bd1dec0ba6a784813785f13d3

i386 architecture (Intel ia32)

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec_2.2.9-
10+lenny6_i386.deb
Size/MD5 checksum: 82366 ab10d1ab26c914777c5296fe9ccfe027

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.9-10+lenny6_i386.deb
Size/MD5 checksum: 241326 2ee9101bf92fcac69249094b3ca11e2a

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.9-10+lenny6_i386.deb
Size/MD5 checksum: 240776 43a654cf0439fc97997a57baec5e2995

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec-custom
_2.2.9-10+lenny6_i386.deb
Size/MD5 checksum: 84104 f73a1bff0a8a4426e63803c4e5c67c60

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
9-10+lenny6_i386.deb
Size/MD5 checksum: 783440 053ba7ef4fbb56547200c32c35ac8a0e

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.9-1
0+lenny6_i386.deb
Size/MD5 checksum: 143414 c20c10a3eadac1c494a5750888875800

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.9-10+lenny6_i386.deb
Size/MD5 checksum: 237396 06841f14531fab0adb92177af849c8be

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.9-10+lenny6_i386.deb
Size/MD5 checksum: 211420 69c67bd0052c70322924b901ba5f5428

http://security.debian.org/pool/updates/main/a/apache2/apache2-dbg_2.2.9-10+
lenny6_i386.deb
Size/MD5 checksum: 2324892 87c51cc1fb8ae2532adcfa601a7b5af4

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.9-10+lenny6_i386.deb
Size/MD5 checksum: 212726 11b86a68880fa98a130e449dec0fbbcc

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.6-02-1+lenny2+b2_i386.deb
Size/MD5 checksum: 179396 4ae5716372fe19991b0d8a4cc751d45f

ia64 architecture (Intel ia64)

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.9-1
0+lenny6_ia64.deb
Size/MD5 checksum: 162732 0a9a153e3703f9dbd33e325d67373bce

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.6-02-1+lenny2+b2_ia64.deb
Size/MD5 checksum: 247068 39445ee73d2076bfa589a5840a3d6024

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
9-10+lenny6_ia64.deb
Size/MD5 checksum: 1036624 80b366704dc888c2bea8d84c316faf33

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.9-10+lenny6_ia64.deb
Size/MD5 checksum: 208668 c2b06d3c767fa737fbf5e1c3d50d001c

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.9-10+lenny6_ia64.deb
Size/MD5 checksum: 311692 77ff8879c2853c4b33903299ec3120c8

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.9-10+lenny6_ia64.deb
Size/MD5 checksum: 312616 1c20b667ebbd43b0ee1b01cd1cdd991d

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec_2.2.9-
10+lenny6_ia64.deb
Size/MD5 checksum: 83920 a383c7aef1758f963c019793af7b5f92

http://security.debian.org/pool/updates/main/a/apache2/apache2-dbg_2.2.9-10+
lenny6_ia64.deb
Size/MD5 checksum: 2317952 803f0b941814cbbc49f4e37bc3b9ca95

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.9-10+lenny6_ia64.deb
Size/MD5 checksum: 209700 59ab45d2c7c2168a941ff2fc842268e1

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.9-10+lenny6_ia64.deb
Size/MD5 checksum: 304670 067ece69f8b9518f9b18cd948c4df971

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec-custom
_2.2.9-10+lenny6_ia64.deb
Size/MD5 checksum: 85802 9294d252435e8026d6135bf8efdfaf46

mips architecture (MIPS (Big Endian))

http://security.debian.org/pool/updates/main/a/apache2/apache2-dbg_2.2.9-10+
lenny6_mips.deb
Size/MD5 checksum: 2465158 a36366e07810785cd1f2dc3b020d3486

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
9-10+lenny6_mips.deb
Size/MD5 checksum: 780460 a5daeb91029f3b027a810ee22456ebd3

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.9-10+lenny6_mips.deb
Size/MD5 checksum: 233408 ec9001ee4c996d0b14a9e67d9ce380ec

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec_2.2.9-
10+lenny6_mips.deb
Size/MD5 checksum: 82082 1fc55f0526e3bf90c2156364055a1627

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.6-02-1+lenny2+b2_mips.deb
Size/MD5 checksum: 171444 789208a77578e49ebca9be904c99aff3

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec-custom
_2.2.9-10+lenny6_mips.deb
Size/MD5 checksum: 83688 8612d0c31dee19c557723b08354c20d7

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.9-1
0+lenny6_mips.deb
Size/MD5 checksum: 149712 ac8ddf3ab4a3b0fb255adbc588e57305

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.9-10+lenny6_mips.deb
Size/MD5 checksum: 209718 8af3815f7794f4e60d72ba52d3bd19c4

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.9-10+lenny6_mips.deb
Size/MD5 checksum: 229494 c2ef345862009f2a2b979205fec22567

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.9-10+lenny6_mips.deb
Size/MD5 checksum: 208698 246c0001aaa98be577f6c5f004330285

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.9-10+lenny6_mips.deb
Size/MD5 checksum: 233980 ce7b3760443a98b0ddc0607a7a9842bf

mipsel architecture (MIPS (Little Endian))

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.9-10+lenny6_mipsel.deb
Size/MD5 checksum: 228110 e45b1c3294102e26eee671b860f4aabc

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.9-10+lenny6_mipsel.deb
Size/MD5 checksum: 208710 1403636fff03ab43353cdffdef62ffd7

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec-custom
_2.2.9-10+lenny6_mipsel.deb
Size/MD5 checksum: 83708 9b1c257025920f6dd0a7a2b231c97141

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.9-10+lenny6_mipsel.deb
Size/MD5 checksum: 209740 546504d6f0a2a449e9bcd618f4700ce5

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec_2.2.9-
10+lenny6_mipsel.deb
Size/MD5 checksum: 82128 31209b35ecb423f2d88347df6c08eddb

http://security.debian.org/pool/updates/main/a/apache2/apache2-dbg_2.2.9-10+
lenny6_mipsel.deb
Size/MD5 checksum: 2420074 b57ff2a01ee7f29d0dcba4214dc7fc21

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.9-10+lenny6_mipsel.deb
Size/MD5 checksum: 232140 3dfff4c54077cb221e19533f19538834

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
9-10+lenny6_mipsel.deb
Size/MD5 checksum: 778974 d9d0084ea48aaa56d2f99c632711d084

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.6-02-1+lenny2+b2_mipsel.deb
Size/MD5 checksum: 169470 f04a239ba4f1d6ae4ff8ce0960f784fd

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.9-10+lenny6_mipsel.deb
Size/MD5 checksum: 232796 8ced513dc28d7165fd76076803b98188

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.9-1
0+lenny6_mipsel.deb
Size/MD5 checksum: 150024 c2a66c2c63eeb66df98b136cceadc780

powerpc architecture (PowerPC)

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec-custom
_2.2.9-10+lenny6_powerpc.deb
Size/MD5 checksum: 84570 b43f074242385089dda2aae2e9ae1595

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
9-10+lenny6_powerpc.deb
Size/MD5 checksum: 915976 723f3349b829894595b913099f06ecc2

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.9-10+lenny6_powerpc.deb
Size/MD5 checksum: 257408 c4bab781417526a0dfdb2240ab2fef07

http://security.debian.org/pool/updates/main/a/apache2/apache2-dbg_2.2.9-10+
lenny6_powerpc.deb
Size/MD5 checksum: 2495210 6fb817120bcb095006fd09d2318f28ee

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.6-02-1+lenny2+b2_powerpc.deb
Size/MD5 checksum: 195192 6b4d950e48c6cdfd00d403e42b719b40

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.9-10+lenny6_powerpc.deb
Size/MD5 checksum: 208684 ece82cc979cff6832d51a6caf51f38b5

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec_2.2.9-
10+lenny6_powerpc.deb
Size/MD5 checksum: 82908 c54a24103b503b5de1b27993ee33610f

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.9-1
0+lenny6_powerpc.deb
Size/MD5 checksum: 160960 361e2bae65d5f1303073d8e4d88ccdb7

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.9-10+lenny6_powerpc.deb
Size/MD5 checksum: 209714 81fbc6671b2d4137dc52232e9d572ea9

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.9-10+lenny6_powerpc.deb
Size/MD5 checksum: 258234 6dbd57dc907e93b5e9dcd3058e99b30f

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.9-10+lenny6_powerpc.deb
Size/MD5 checksum: 253294 696e2e9219d6e029c0c6f024045a4d5f

s390 architecture (IBM S/390)

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec_2.2.9-
10+lenny6_s390.deb
Size/MD5 checksum: 82544 4e332ccedffd13b1e7b866fe71cf8a9b

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.6-02-1+lenny2+b2_s390.deb
Size/MD5 checksum: 197642 e32a924a47b90452356956e3fe39d34e

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.9-10+lenny6_s390.deb
Size/MD5 checksum: 255970 197eea5c422ecf37ec592bf9612c3b2f

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.9-10+lenny6_s390.deb
Size/MD5 checksum: 208694 33dddaec24eb4475411eb55abb5d5e71

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.9-1
0+lenny6_s390.deb
Size/MD5 checksum: 150912 2aa00b2fb3b84a536030f5b5635115bc

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.9-10+lenny6_s390.deb
Size/MD5 checksum: 209726 cf54089c8a33087820f8c9359e461625

http://security.debian.org/pool/updates/main/a/apache2/apache2-dbg_2.2.9-10+
lenny6_s390.deb
Size/MD5 checksum: 2409108 1b6e40f5d2772a0a1f26424f4b470136

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
9-10+lenny6_s390.deb
Size/MD5 checksum: 824586 ff52926d953f8b5cbde82ac31176dedb

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.9-10+lenny6_s390.deb
Size/MD5 checksum: 259924 655aca8f56383ebd106ded50d8f557ea

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.9-10+lenny6_s390.deb
Size/MD5 checksum: 260610 12751082d3f1466735d1b3d395d63690

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec-custom
_2.2.9-10+lenny6_s390.deb
Size/MD5 checksum: 84310 9aa451ccb1513c05f4ccc0319124181e

sparc architecture (Sun SPARC/UltraSPARC)

http://security.debian.org/pool/updates/main/a/apache2/apache2-dbg_2.2.9-10+
lenny6_sparc.deb
Size/MD5 checksum: 2231018 fcdbb08c45ff474592590fac0aa78dac

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec-custom
_2.2.9-10+lenny6_sparc.deb
Size/MD5 checksum: 84568 6dcf4195e216a22ef2919806d55d5098

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2
.2.9-10+lenny6_sparc.deb
Size/MD5 checksum: 237224 9bf96cc5f932643b1c55c6a9fa238af1

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-event_2.2
.9-10+lenny6_sparc.deb
Size/MD5 checksum: 241474 ed8557af547d9d55a075fca5cf88488d

http://security.debian.org/pool/updates/main/a/apache2/apache2-suexec_2.2.9-
10+lenny6_sparc.deb
Size/MD5 checksum: 82888 bde0baf83e2e972b398be6a500f77125

http://security.debian.org/pool/updates/main/a/apache2-mpm-itk/apache2-mpm-i
tk_2.2.6-02-1+lenny2+b2_sparc.deb
Size/MD5 checksum: 177562 09cbb49296407c83ef1575b003dfb129

http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.
2.9-10+lenny6_sparc.deb
Size/MD5 checksum: 241014 2c10b920cdfec918af3eb148e29fca0f

http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2
.2.9-10+lenny6_sparc.deb
Size/MD5 checksum: 212798 28edff7612bb824fc20d88c29b8b7e1f

http://security.debian.org/pool/updates/main/a/apache2/apache2.2-common_2.2.
9-10+lenny6_sparc.deb
Size/MD5 checksum: 781748 63e7003956d73b1a04e544c00eaa7728

http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_
2.2.9-10+lenny6_sparc.deb
Size/MD5 checksum: 213976 b7e758d0a2e6574944d27e2d6e40f60c

http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.2.9-1
0+lenny6_sparc.deb
Size/MD5 checksum: 146596 c37cea33bed94a68326b511a66bf050e

These files will probably be moved into the stable distribution on
its next update.

-
----------------------------------------------------------------------------
-----
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security
dists/stable/updates/main
Mailing list: debian-security-announce@...
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iD8DBQFLAaeIbxelr8HyTqQRAgKdAKCdphPc6HLAfog5KvY02ULyWB5GTgCgwA0Q
0mdLOHPB3tKH5Lq+ZPhM9ec=
=BxZ0
-----END PGP SIGNATURE-----

--
To UNSUBSCRIBE, email to debian-security-announce-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact
listmaster@...

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Re: proftpd amd64 binaries for DSA-1925?

2009-11-12T15:14:01Z

Hi,

On Fri, Nov 13, 2009 at 10:04:01AM +1100, Steffen Joeris wrote:
> I just installed proftpd-dfsg version 1.3.0-19etch3 for amd64 into the
> security archive.

Excellent, thank you.

Mark.

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Re: proftpd amd64 binaries for DSA-1925?

2009-11-12T15:04:01Z

Hi

On Fri, 13 Nov 2009 09:24:50 am Mark van Walraven wrote:

> On Wed, Nov 11, 2009 at 11:31:46AM +0100, Sven Hoexter wrote:
> > On Wed, Nov 11, 2009 at 10:58:58AM +1300, Mark van Walraven wrote:
> > > Greetings,
> > >
> > > "Binaries for the amd64 architecture will be released once they are
> > > available."
> > >
> > > Has this been overlooked, or just taking a while?
> >
> > Looks like the links are still missing in the DSA on the website but the
> > packages are on security.d.o since Nov. 2.
> > proftpd-basic_1.3.1-17lenny4_amd64.deb Nov 02 23:40
>
> Ah yes, but no proftpd_1.3.0-19etch3_amd64.deb (nor powerpc).

I just installed proftpd-dfsg version 1.3.0-19etch3 for amd64 into the

security archive.

powerpc is failing to build, because it wants newer libssl-dev and the latest
openssl DSA did not seem to have powerpc binaries.

Cheers
Steffen

signature.asc (205 bytes) Download Attachment

Re: proftpd amd64 binaries for DSA-1925?

2009-11-12T14:24:50Z

On Wed, Nov 11, 2009 at 11:31:46AM +0100, Sven Hoexter wrote:

> On Wed, Nov 11, 2009 at 10:58:58AM +1300, Mark van Walraven wrote:
> > Greetings,
> >
> > "Binaries for the amd64 architecture will be released once they are available."
> >
> > Has this been overlooked, or just taking a while?
>
> Looks like the links are still missing in the DSA on the website but the
> packages are on security.d.o since Nov. 2.
> proftpd-basic_1.3.1-17lenny4_amd64.deb Nov 02 23:40

Ah yes, but no proftpd_1.3.0-19etch3_amd64.deb (nor powerpc).

Mark.

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Re: proftpd amd64 binaries for DSA-1925?

2009-11-11T02:31:46Z

On Wed, Nov 11, 2009 at 10:58:58AM +1300, Mark van Walraven wrote:
> Greetings,
>
> "Binaries for the amd64 architecture will be released once they are available."
>
> Has this been overlooked, or just taking a while?

Looks like the links are still missing in the DSA on the website but the
packages are on security.d.o since Nov. 2.
proftpd-basic_1.3.1-17lenny4_amd64.deb Nov 02 23:40

Sven
--
If God passed a mic to me to speak
I'd say stay in bed, world
Sleep in peace
[The Cardigans - 03:45: No sleep]

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

proftpd amd64 binaries for DSA-1925?

2009-11-10T13:58:58Z

Greetings,

"Binaries for the amd64 architecture will be released once they are available."

Has this been overlooked, or just taking a while?

Mark.

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Please test gnutls13 update for etch

2009-11-09T10:03:05Z

Hi,

I've prepared updated packages for gnutls13 in etch fixing CVE-2009-2730 and
CVE-2009-2409.
It would be helpful, if people could install these packages and check whether
they notice any regressions.

Packages are available at http://people.debian.org/~iuculano/gnutls13/
Please send feedback to iuculano@...

Cheers,
Giuseppe.

signature.asc (205 bytes) Download Attachment

Re: problem with security mirror?

2009-11-09T05:30:04Z

Thijs Kinkhorst a écrit :

> On Sun, November 8, 2009 13:34, Yves-Alexis Perez wrote:
>> Hey,
>>
>> apt-get update on my lenny box gives the following warning:
>>
>> W: GPG error: http://security.debian.org lenny/updates Release: The
>> following signatures were invalid: BADSIG 9AA38DCD55BE302B Debian
>> Archive Automatic Signing Key (5.0/lenny) <ftpmaster@...>
>>
>> Do we have some info about that?
>
> I don't have that problem here. Which specific mirror (IP-address) is this?
>

Hmhm, sorry for not updating, the problems has been fixed yesterday
after asking on irc (not exactly sure what was the problem but Ganneff
said it was ok and the problem indeed disappeared :) )

Cheers,

--
Yves-Alexis

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Re: [DSA-1929-1] linux-2.6 -- privilege escalation/denial of service Error while Upgrading Kernel

2009-11-09T01:57:00Z

Hi,

Problem solved - somebody just deleted /usr/share/initramfs-tools *doh*

:-)

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Re: problem with security mirror?

2009-11-09T01:39:56Z

On Sun, November 8, 2009 13:34, Yves-Alexis Perez wrote:
> Hey,
>
> apt-get update on my lenny box gives the following warning:
>
> W: GPG error: http://security.debian.org lenny/updates Release: The
> following signatures were invalid: BADSIG 9AA38DCD55BE302B Debian
> Archive Automatic Signing Key (5.0/lenny) <ftpmaster@...>
>
> Do we have some info about that?

I don't have that problem here. Which specific mirror (IP-address) is this?

Thijs

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

[DSA-1929-1] linux-2.6 -- privilege escalation/denial of service Error while Upgrading Kernel

2009-11-09T01:04:13Z

Hi everybody,

did anybody run into the same problems on AMD-architecture?

<- *snip* ->
server:/usr/local/apache2/conf/extra# apt-get upgrade
Reading package lists... Done
Building dependency tree... Done
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
1 not fully installed or removed.
Need to get 0B of archives.
After unpacking 0B of additional disk space will be used.
Do you want to continue [Y/n]? y
Setting up linux-image-2.6.18-6-amd64 (2.6.18.dfsg.1-26etch1) ...

VERSION 2.0

CAPB backup

Running depmod.

Finding valid ramdisk creators.
Using mkinitramfs-kpkg to build the ramdisk.
/usr/sbin/mkinitramfs: line 80: /usr/share/initramfs-tools/scripts/functions: No such file or directory
mkinitramfs-kpkg failed to create initrd image.
Failed to create initrd image.
dpkg: error processing linux-image-2.6.18-6-amd64 (--configure):
subprocess post-installation script returned error exit status 9
Errors were encountered while processing:
linux-image-2.6.18-6-amd64
E: Sub-process /usr/bin/dpkg returned an error code (1)

<- *snap* ->

Thanks,
Werner

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

problem with security mirror?

2009-11-08T04:34:34Z

Hey,

apt-get update on my lenny box gives the following warning:

W: GPG error: http://security.debian.org lenny/updates Release: The
following signatures were invalid: BADSIG 9AA38DCD55BE302B Debian
Archive Automatic Signing Key (5.0/lenny) <ftpmaster@...>

Do we have some info about that?

Cheers,
--
Yves-Alexis

signature.asc (205 bytes) Download Attachment

Re: [DSA 1916-1] New kdelibs packages

2009-11-06T11:06:18Z

Steffen Joeris wrote the following on 06.11.2009 05:23

<- *snip* ->

> I have installed them into the archive just now, the security mirrors are
> still syncing, so it should be available within the day.
>
> Cheers
> Steffen

<- *snip* ->
The following packages will be upgraded:
kdelibs (3.5.10.dfsg.1-0lenny2 => 3.5.10.dfsg.1-0lenny3)
.
.

<- *snip* ->

Thanks a lot.

--
bye Thilo

4096R/0xC70B1A8F
721B 1BA0 095C 1ABA 3FC6 7C18 89A4 A2A0 C70B 1A8F

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Re: Please test pidgin update

2009-11-06T10:47:19Z

On Fri, Nov 06, 2009 at 03:58:55PM +0100, Julien Cristau wrote:

> On Mon, Nov 2, 2009 at 20:08:15 +0100, Moritz Muehlenhoff wrote:
>
> > I've prepared updated packages for pidgin fixing CVE-2009-3615.
> > However, I need testers who actually use ICQ. Packages are available
> > at http://people.debian.org/~jmm/ for amd64 and i386. Please send
> > feedback directly to jmm@...
> >
> Hi Moritz,
>
> libpurple0 seems to be missing, and the pidgin package depends on it, so
> these packages are not installable. Forgot to copy it?

Doh, fixed.

Cheers,
Moritz

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Re: Please test pidgin update

2009-11-06T06:58:55Z

On Mon, Nov 2, 2009 at 20:08:15 +0100, Moritz Muehlenhoff wrote:

> I've prepared updated packages for pidgin fixing CVE-2009-3615.
> However, I need testers who actually use ICQ. Packages are available
> at http://people.debian.org/~jmm/ for amd64 and i386. Please send
> feedback directly to jmm@...
>
Hi Moritz,

libpurple0 seems to be missing, and the pidgin package depends on it, so
these packages are not installable. Forgot to copy it?

Cheers,
Julien

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Re: [DSA 1916-1] New kdelibs packages

2009-11-05T20:23:46Z

On Thu, 5 Nov 2009 08:25:23 am Thilo Six wrote:

> Hello security members
>
> DSA 1916-1 has been announced on 23rd of october but still there are no
> packages available on the mirrors.
>
> The DSA said:
>
> <- *snip* ->
> Due to a bug in the archive system, the fix for the stable distribution
> (lenny), will be released as version 4:3.5.10.dfsg.1-0lenny3 once it is
> available.
> <- *snip* ->
>
> Is there a possibility for a user to know the progress of this?
> Should i post to debian-devel-kde instead?

I have installed them into the archive just now, the security mirrors are

still syncing, so it should be available within the day.

Cheers
Steffen

signature.asc (205 bytes) Download Attachment

Re: [SECURITY] [DSA 1927-1] New Linux 2.6.26 packages fix several vulnerabilities

2009-11-05T13:32:46Z

Hi all,

>> Additional information about this change, including instructions for
>> making this change locally in advance of 5.0.4 (recommended), can be
>> found at:
>> http://wiki.debian.org/mmap_min_addr
>>

The wiki entry only shows mitigations for 5.x versions of Debian. It
would be helpful if it also mentioned that
the mitigation steps for etch (e.g. none so far as I know) and etchnhalf.

Thanks for considering this.

John

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Re: [SECURITY] [DSA 1927-1] New Linux 2.6.26 packages fix several vulnerabilities

2009-11-05T10:31:03Z

Atualizar kernel seja qual for tua distribuição. Da uma olhadela no null pointer dereference acima. Mes retrasado houve um problema similar em drivers de protocolo de rede.

2009/11/5 dann frazier <dannf@...>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ----------------------------------------------------------------------
Debian Security Advisory DSA-1927-1 security@...
http://www.debian.org/security/ dann frazier
November 5, 2009 http://www.debian.org/security/faq
- ----------------------------------------------------------------------

Package : linux-2.6
Vulnerability : privilege escalation/denial of service/sensitive memory leak
Problem type : local
Debian-specific: no
CVE Id(s) : CVE-2009-3228 CVE-2009-3238 CVE-2009-3547 CVE-2009-3612
CVE-2009-3620 CVE-2009-3621 CVE-2009-3638

Notice: Debian 5.0.4, the next point release of Debian 'lenny', will
include a new default value for the mmap_min_addr tunable. This
change will add an additional safeguard against a class of security
vulnerabilities known as "NULL pointer dereference" vulnerabilities,
but it will need to be overridden when using certain applications.
Additional information about this change, including instructions for
making this change locally in advance of 5.0.4 (recommended), can be
found at:
http://wiki.debian.org/mmap_min_addr

Several vulnerabilities have been discovered in the Linux kernel that
may lead to a denial of service, sensitive memory leak or privilege
escalation. The Common Vulnerabilities and Exposures project
identifies the following problems:

CVE-2009-3228

Eric Dumazet reported an instance of uninitialized kernel memory
in the network packet scheduler. Local users may be able to
exploit this issue to read the contents of sensitive kernel
memory.

CVE-2009-3238

Linus Torvalds provided a change to the get_random_int() function
to increase its randomness.

CVE-2009-3547

Earl Chew discovered a NULL pointer dereference issue in the
pipe_rdwr_open function which can be used by local users to gain
elevated privileges.

CVE-2009-3612

Jiri Pirko discovered a typo in the initialization of a structure
in the netlink subsystem that may allow local users to gain access
to sensitive kernel memory.

CVE-2009-3620

Ben Hutchings discovered an issue in the DRM manager for ATI Rage
128 graphics adapters. Local users may be able to exploit this
vulnerability to cause a denial of service (NULL pointer
dereference).

CVE-2009-3621

Tomoki Sekiyama discovered a deadlock condition in the UNIX domain
socket implementation. Local users can exploit this vulnerability
to cause a denial of service (system hang).

CVE-2009-3638

David Wagner reported an overflow in the KVM subsystem on i386
systems. This issue is exploitable by local users with access to
the /dev/kvm device file.

For the stable distribution (lenny), this problem has been fixed in
version 2.6.26-19lenny2.

For the oldstable distribution (etch), these problems, where
applicable, will be fixed in updates to linux-2.6 and linux-2.6.24.

We recommend that you upgrade your linux-2.6 and user-mode-linux
packages.

Note: Debian carefully tracks all known security issues across every
linux kernel package in all releases under active security support.
However, given the high frequency at which low-severity security
issues are discovered in the kernel and the resource requirements of
doing an update, updates for lower priority issues will normally not
be released for all kernels at the same time. Rather, they will be
released in a staggered or "leap-frog" fashion.

The following matrix lists additional source packages that were
rebuilt for compatibility with or to take advantage of this update:

Debian 5.0 (lenny)
user-mode-linux 2.6.26-1um-2+19lenny2

Upgrade instructions
- --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian GNU/Linux 5.0 alias lenny
- --------------------------------

Stable updates are available for alpha, amd64, armel, hppa, i386,
ia64, and powerpc. Updates for other architectures will be released
as they become available.

Source archives:

http://security.debian.org/pool/updates/main/l/linux-2.6/linux-2.6_2.6.26-19lenny2.dsc
Size/MD5 checksum: 5778 8ea6c47c6f227f855a41deea57d988d8
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-2.6_2.6.26-19lenny2.diff.gz
Size/MD5 checksum: 7651053 5cf749f9817436c544df97bc0217f125
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-2.6_2.6.26.orig.tar.gz
Size/MD5 checksum: 61818969 85e039c2588d5bf3cb781d1c9218bbcb

Architecture independent packages:

http://security.debian.org/pool/updates/main/l/linux-2.6/linux-tree-2.6.26_2.6.26-19lenny2_all.deb
Size/MD5 checksum: 106866 d25eeb65132ec68406d8fdf7ea340274
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-doc-2.6.26_2.6.26-19lenny2_all.deb
Size/MD5 checksum: 4627374 196ffe954d4e906638c7eb2bd22e310d
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-patch-debian-2.6.26_2.6.26-19lenny2_all.deb
Size/MD5 checksum: 2565284 0682418bd83f755a17a71435e535f91a
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-source-2.6.26_2.6.26-19lenny2_all.deb
Size/MD5 checksum: 48672074 5aa4d0110919b100a772509455b22757
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-manual-2.6.26_2.6.26-19lenny2_all.deb
Size/MD5 checksum: 1768032 cb95ea5101339c35d425ac1ba2f0ff02
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-support-2.6.26-2_2.6.26-19lenny2_all.deb
Size/MD5 checksum: 122160 0d3dd77a86989aa6e6bdfbbf548d22a6

alpha architecture (DEC Alpha)

http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-all-alpha_2.6.26-19lenny2_alpha.deb
Size/MD5 checksum: 106376 891beea699175e77b6f4cdb1dbbd2377
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-alpha-generic_2.6.26-19lenny2_alpha.deb
Size/MD5 checksum: 363880 278fefb639e7029af6d5017dedefb500
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-alpha-generic_2.6.26-19lenny2_alpha.deb
Size/MD5 checksum: 28487296 beb21f0f222b507898406b051d161c25
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-all_2.6.26-19lenny2_alpha.deb
Size/MD5 checksum: 106358 b4c10db49252b22e7019746743624712
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-19lenny2_alpha.deb
Size/MD5 checksum: 741234 b08b288693ab9d0d3fa1e8141ba4f038
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-alpha-legacy_2.6.26-19lenny2_alpha.deb
Size/MD5 checksum: 28471478 f412fb78f0dfac51f6e39a035538fe91
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-alpha-smp_2.6.26-19lenny2_alpha.deb
Size/MD5 checksum: 365312 9147bf190b4dce64fb4783b0c0aba8be
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-alpha-legacy_2.6.26-19lenny2_alpha.deb
Size/MD5 checksum: 364408 66cd6736f72c0eedabbad596baac8888
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-alpha-smp_2.6.26-19lenny2_alpha.deb
Size/MD5 checksum: 29177668 abb9bcc21a5fcb0a7352a30fb7209ca1
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-common_2.6.26-19lenny2_alpha.deb
Size/MD5 checksum: 3543732 d84be29426f1d706617a6ad91d3b6109

amd64 architecture (AMD x86_64 (AMD64))

http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-amd64_2.6.26-19lenny2_amd64.deb
Size/MD5 checksum: 389134 2ac60b6aaece8351c023cecbb4bd41ee
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-19lenny2_amd64.deb
Size/MD5 checksum: 749556 c994eeb54dd967b5255448e80fa4911c
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-vserver-amd64_2.6.26-19lenny2_amd64.deb
Size/MD5 checksum: 389740 8b6b5b10fe023670ca8cf9326d46ccd0
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-openvz-amd64_2.6.26-19lenny2_amd64.deb
Size/MD5 checksum: 394262 8398b2d9ce752ffa39ac55b8f55fa1b7
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-common_2.6.26-19lenny2_amd64.deb
Size/MD5 checksum: 3719144 1fa20cc556fbfecdf0c2335a3c9edeee
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-all_2.6.26-19lenny2_amd64.deb
Size/MD5 checksum: 106352 edb758613531f5c655c8451f1136b62a
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-all-amd64_2.6.26-19lenny2_amd64.deb
Size/MD5 checksum: 106378 dd749481c75a66f517551c6b21b3bbbb
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-modules-2.6.26-2-xen-amd64_2.6.26-19lenny2_amd64.deb
Size/MD5 checksum: 19274410 21621e01b880d1f222007e3101d255c6
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-openvz-amd64_2.6.26-19lenny2_amd64.deb
Size/MD5 checksum: 21053742 015990eedbce234dfa4facdf02f6ad60
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-common-xen_2.6.26-19lenny2_amd64.deb
Size/MD5 checksum: 3851500 355a9cc7757195196006160929313e78
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-vserver-amd64_2.6.26-19lenny2_amd64.deb
Size/MD5 checksum: 20902812 3af1d1431ff5674b7aeaf41c784d3ba6
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-common-vserver_2.6.26-19lenny2_amd64.deb
Size/MD5 checksum: 3751848 f5289bf2c22a6112d13a9af6d4291226
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-xen-amd64_2.6.26-19lenny2_amd64.deb
Size/MD5 checksum: 1804900 8ea5afa2f5e29175e92975ef93144b9a
http://security.debian.org/pool/updates/main/l/linux-2.6/xen-linux-system-2.6.26-2-xen-amd64_2.6.26-19lenny2_amd64.deb
Size/MD5 checksum: 106334 2620974dbbc17bbab4aefe183584a6da
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-common-openvz_2.6.26-19lenny2_amd64.deb
Size/MD5 checksum: 3774804 8fa1254acec879820c17dd8e2e4eee56
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-amd64_2.6.26-19lenny2_amd64.deb
Size/MD5 checksum: 20886016 71a1f29b66ee30cf7a63b77cddc71ec7
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-xen-amd64_2.6.26-19lenny2_amd64.deb
Size/MD5 checksum: 383280 0d0cad637c14a594b3ae424abf824608

armel architecture (ARM EABI)

http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-iop32x_2.6.26-19lenny2_armel.deb
Size/MD5 checksum: 365550 f97d5bcae3c5c5957781e6507d730780
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-iop32x_2.6.26-19lenny2_armel.deb
Size/MD5 checksum: 12396344 04df2ffe832cba3ea1e299701069ca96
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-versatile_2.6.26-19lenny2_armel.deb
Size/MD5 checksum: 335184 ff1387cae5afb9c7b2d8b20ab546293f
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-common_2.6.26-19lenny2_armel.deb
Size/MD5 checksum: 4136850 e7e7742e3ead70e194f540432bf93ba6
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-19lenny2_armel.deb
Size/MD5 checksum: 747792 89242eec0e6f453f37b228ddb49e4e26
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-ixp4xx_2.6.26-19lenny2_armel.deb
Size/MD5 checksum: 11680082 d9133e003cd603924930f1db870c6d46
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-all_2.6.26-19lenny2_armel.deb
Size/MD5 checksum: 106354 fce271c39eaa874f6a570b9298a13836
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-versatile_2.6.26-19lenny2_armel.deb
Size/MD5 checksum: 9575158 d8c6ec6842339c8d8391916c7b4a25c2
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-orion5x_2.6.26-19lenny2_armel.deb
Size/MD5 checksum: 11371016 edc9b10b99e73302ef1853db546ed6bb
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-ixp4xx_2.6.26-19lenny2_armel.deb
Size/MD5 checksum: 363118 ca61af313ac3687b042c82e4c56bd078
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-all-armel_2.6.26-19lenny2_armel.deb
Size/MD5 checksum: 106390 d14317d669c70ea8458b0138105be3e0
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-orion5x_2.6.26-19lenny2_armel.deb
Size/MD5 checksum: 360844 1c7437e1e4de9358f7975feae74501f0

hppa architecture (HP PA RISC)

http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-parisc64_2.6.26-19lenny2_hppa.deb
Size/MD5 checksum: 17070158 92d872205303ea622d1419d074b54737
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-parisc_2.6.26-19lenny2_hppa.deb
Size/MD5 checksum: 296434 df3ddd0a0dbfa712201ff031bfc109c0
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-parisc-smp_2.6.26-19lenny2_hppa.deb
Size/MD5 checksum: 16323830 9998a4deead3033e07f28a1cd0816136
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-parisc64_2.6.26-19lenny2_hppa.deb
Size/MD5 checksum: 297894 8cace7fc519c562d4b8657c75d230815
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-common_2.6.26-19lenny2_hppa.deb
Size/MD5 checksum: 3594236 8d621635c43fb9540d4a68ef6d891a57
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-all_2.6.26-19lenny2_hppa.deb
Size/MD5 checksum: 106356 f967499d62622f5f0833539c9eaf2359
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-all-hppa_2.6.26-19lenny2_hppa.deb
Size/MD5 checksum: 106380 f518c1de9ce8dd272db1afa30e38999a
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-parisc_2.6.26-19lenny2_hppa.deb
Size/MD5 checksum: 15731364 d50829b0556bc7fef6e8c505db959ee2
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-19lenny2_hppa.deb
Size/MD5 checksum: 759840 faab7849f3cef86fbebc037cbd00fd76
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-parisc64-smp_2.6.26-19lenny2_hppa.deb
Size/MD5 checksum: 17614856 6311929870350217721f7f194b6ff585
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-parisc64-smp_2.6.26-19lenny2_hppa.deb
Size/MD5 checksum: 299160 57fd97b01842bbe74e37f443e346d695
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-parisc-smp_2.6.26-19lenny2_hppa.deb
Size/MD5 checksum: 298110 631076db8957d15ab8b0161a60e31734

i386 architecture (Intel ia32)

http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-486_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 398182 6f93bf37534bcfb9162b9985b83ee38f
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-openvz-686_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 20502134 d39255c90c67fddda4c3cb49ce6c93e1
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-vserver-686_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 20235868 99b3ed110df3b6b2bb6b06feb9d30b72
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-all_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 106354 835280ec5ad990b0bcebb988953bd5d9
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-686-bigmem_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 20326344 9192cd01f84e7192159aefec2c4f8fb9
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-686_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 20208578 c118b5d6fc4f5007728d1ab804624cd8
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-686_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 398052 88be8c6ce0726c87f3127e1ea8b1a382
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-486_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 20175038 ee7bf2ce4d4557f9fdfb53790627ebac
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-common_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 3719206 0d8393bd6245aa3d23ef8938477d5f63
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-vserver-686-bigmem_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 20353680 67f48fcd0835fd230e8583cf2676cf09
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-686-bigmem_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 398494 bf4ef1c3e9f35ec4dc0bfaeda1ee5516
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-common-xen_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 3851592 94a16944e91f5594a6fa02115b680434
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-vserver-686-bigmem_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 400332 d734fb2f035f0a6a041d13f5a3d95c6c
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 749582 26580da1f40ffeeb17146765bbe241f8
http://security.debian.org/pool/updates/main/l/linux-2.6/xen-linux-system-2.6.26-2-xen-686_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 106348 b76709d63441fcc3e285d2a6dc999890
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-amd64_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 20864938 cc5255ece9764242c63b522abfd8a517
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-vserver-686_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 399328 c929aa19b40e7eea5ea885148c645a17
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-common-vserver_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 3751908 3b936dbeaf13b730ab8dd56e5ab726f9
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-amd64_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 387338 03fd54819fb7176a176eeb4c2ff0209c
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-openvz-686_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 403790 efa7179643f2f709cace01bb3f4a5580
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-common-openvz_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 3774936 088f38a8e9c79bb4ddc67e200ebee754
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-xen-686_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 1591850 93ad5d17c9e8ac22c3544c8a9ad9eabd
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-xen-686_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 384698 5cc9137a10772a48628b0014e0dbbc15
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-all-i386_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 106404 04d07f928e22a2150a2bb9188c6f1257
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-modules-2.6.26-2-xen-686_2.6.26-19lenny2_i386.deb
Size/MD5 checksum: 18035618 641b34424aad0e9291713bd9e2bf96e5

ia64 architecture (Intel ia64)

http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-vserver-itanium_2.6.26-19lenny2_ia64.deb
Size/MD5 checksum: 355640 2bce0c1faefc019460e3eebca333a5fc
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-common_2.6.26-19lenny2_ia64.deb
Size/MD5 checksum: 3654768 d8fb31f9660b7c0ab42c77e89bf82f1f
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-itanium_2.6.26-19lenny2_ia64.deb
Size/MD5 checksum: 355064 cfb3eee78e3860b2e650716d5032bf5d
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-common-vserver_2.6.26-19lenny2_ia64.deb
Size/MD5 checksum: 3687386 2980814479dbd08d39bd9f92d3005838
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-mckinley_2.6.26-19lenny2_ia64.deb
Size/MD5 checksum: 355046 62fc734ea7fe9bc4bef1f8d8b65cc027
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-vserver-mckinley_2.6.26-19lenny2_ia64.deb
Size/MD5 checksum: 34349456 5cfb3ccf034f0ce13a5861507c4cb758
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-itanium_2.6.26-19lenny2_ia64.deb
Size/MD5 checksum: 34103026 3cee486177d22e2fcd816b536d7ac3d3
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-all_2.6.26-19lenny2_ia64.deb
Size/MD5 checksum: 106350 6265837dd3c0105bcba9d40c5b6966f9
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-vserver-mckinley_2.6.26-19lenny2_ia64.deb
Size/MD5 checksum: 355698 27152c116ad66c7862f3890d36ac80ab
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-mckinley_2.6.26-19lenny2_ia64.deb
Size/MD5 checksum: 34288678 1540b7be96fbb68e4cc01d858c5ef5a4
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-all-ia64_2.6.26-19lenny2_ia64.deb
Size/MD5 checksum: 106384 bfb7eeaec3d89587561c56afec1816e9
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-vserver-itanium_2.6.26-19lenny2_ia64.deb
Size/MD5 checksum: 34165098 7a4fbe457d07807a74e9950a47975d49
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-19lenny2_ia64.deb
Size/MD5 checksum: 748220 03f583157c7eef60269042b9a5a6d0bc

powerpc architecture (PowerPC)

http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-all_2.6.26-19lenny2_powerpc.deb
Size/MD5 checksum: 106358 5431bb9d2abe49fc1b186f44bf440cba
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-19lenny2_powerpc.deb
Size/MD5 checksum: 756032 fb287119a4cf07ef9d6d633ad30f7236
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-powerpc64_2.6.26-19lenny2_powerpc.deb
Size/MD5 checksum: 372504 9c0501a81bf32b1d0b8c939830d9789b
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-vserver-powerpc_2.6.26-19lenny2_powerpc.deb
Size/MD5 checksum: 23650232 ece0b68e6c9baa2e0f964d2bc7da21a2
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-common_2.6.26-19lenny2_powerpc.deb
Size/MD5 checksum: 3856256 5a6eb8c2fe7930456cf5f3a1c257fed1
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-vserver-powerpc64_2.6.26-19lenny2_powerpc.deb
Size/MD5 checksum: 23514630 0aa445df9e479dc6e266a97658c5c675
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-powerpc64_2.6.26-19lenny2_powerpc.deb
Size/MD5 checksum: 23453120 7fdf0e57cb3324433e8f5d3e71c5cb7c
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-powerpc-smp_2.6.26-19lenny2_powerpc.deb
Size/MD5 checksum: 23619598 7eb565a76c6ab3318d32c134f7da26b0
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-powerpc-smp_2.6.26-19lenny2_powerpc.deb
Size/MD5 checksum: 366586 3e8f8e0d8d9dc83a3e009bbdcca04d21
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-common-vserver_2.6.26-19lenny2_powerpc.deb
Size/MD5 checksum: 3890668 a75da89a00e2b5118869888ea03580ae
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-vserver-powerpc64_2.6.26-19lenny2_powerpc.deb
Size/MD5 checksum: 373766 78d152d9edb14f5d179dde50a0131ea7
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-vserver-powerpc_2.6.26-19lenny2_powerpc.deb
Size/MD5 checksum: 366686 4b13a456e727a9259685b74132c5b730
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-all-powerpc_2.6.26-19lenny2_powerpc.deb
Size/MD5 checksum: 106396 33f493756428189d3acc36bde21631ed
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-2-powerpc_2.6.26-19lenny2_powerpc.deb
Size/MD5 checksum: 365950 4149c4f9e6f3e0dc0fbb639a2f962cf8
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-2-powerpc_2.6.26-19lenny2_powerpc.deb
Size/MD5 checksum: 23216978 b0034a3be5877f2edebf6ec71c70a83e

These files will probably be moved into the stable distribution on
its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@...
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iD8DBQFK8vsShuANDBmkLRkRAuztAKCAAmojb32U5ekaEbI3lWTPLYayHQCfQwhe
vHrSbR3EZNHJzNEAXPK0XqY=
=Synp
-----END PGP SIGNATURE-----

--
To UNSUBSCRIBE, email to debian-security-announce-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

--
_
(0- Leonardo Couto Chueri : http://lcchueri.esperanto.eti.br/
//\
V_/_ http://www.esperanto.net/ http://www.esperanto.org.br/
_______________________________________________________________________________
Mi apogas la uzadon de Libera Softvaro, Linux-o kaj Esperanto.
Esperanto, criado para o propósito de ser a segunda língua de cada povo.

Re: to: Henri Salvo

2009-11-05T00:29:58Z

On Wednesday 04 of November 2009, Bernie Dolan wrote:
> Hi,
>
> I tried to send a copy of the file to you but got the following error:
>
> henri@...
> SMTP error from remote mail server after RCPT TO:<henri@...>:
> host kiwai.nerv.fi [213.157.65.70]: 554 5.7.1 Service unavailable;
> Client host [64.222.186.12] blocked using dnsbl.dronebl.org

It seems that the bot already got you on blacklist. You should clean up your
computer, and make sure that bruteforece bot does not run any more.

Regards
Vladislav Kurz

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

[DSA 1916-1] New kdelibs packages

2009-11-04T13:25:23Z

Hello security members

DSA 1916-1 has been announced on 23rd of october but still there are no
packages available on the mirrors.

The DSA said:

<- *snip* ->
Due to a bug in the archive system, the fix for the stable distribution
(lenny), will be released as version 4:3.5.10.dfsg.1-0lenny3 once it is
available.
<- *snip* ->

Is there a possibility for a user to know the progress of this?
Should i post to debian-devel-kde instead?

Thanks for your patience.

--
bye Thilo

4096R/0xC70B1A8F
721B 1BA0 095C 1ABA 3FC6 7C18 89A4 A2A0 C70B 1A8F

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Re: Debian 4.0 and mmap_min_addr null pointer dereference flaw

2009-11-04T09:47:58Z

>
> presumably you mean
>
> vm.mmap_min_addr = 4096
>
> not
>
> echvm.mmap_min_addr = 4096
>
> ?
>
> micah
>

Hi Micah,

Yes sorry about that. I meant to write vm.mmap_min_addr
but I quoted from the Debian wiki which showed
how to change the value for echvm.mmap_min_addr

I am a noob and haven't had experience with sysctl tuning so my head is sort of
spinning here.

Thanks!

John

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Re: Debian 4.0 and mmap_min_addr null pointer dereference flaw

2009-11-04T09:38:01Z

On Wed, Nov 04, 2009 at 09:24:55AM -0800, john wrote:
> On Wed, Nov 4, 2009 at 9:15 AM, Dominic Hargreaves <dom@...> wrote:

> > The mmap_min_addr tuneabout was not introduced until after 2.6.18,
> > which is the default etch kernel. I am using the 'etchnhalf' kernel
> > (linux-image-2.6.24-etchnhalf*) on an etch machine, partly since it
> > offers this protection.

> So would
>
> sudo apt-get install linux-image-2.6.24-etchnhalf.1-686
>
> be the right approach here?

Assuming you would normally run a 686 flavour kernel, yes.

Note that you would have to check that your hardware was compatible
with 2.6.24.

See http://www.debian.org/releases/etch/etchnhalf

for more details and limitations of this approach.

Note also that as with any security-related advice, don't just trust
what I say; do some independent research to validate my claims. I
take no responsibilty for the security of your system by offering this
advice.

Cheers,
Dominic.

--
Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from the.earth.li (keyserver,web,email)

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Re: Debian 4.0 and mmap_min_addr null pointer dereference flaw

2009-11-04T09:36:19Z

On Wed, Nov 04, 2009 at 09:24:55AM -0800, john wrote:

> On Wed, Nov 4, 2009 at 9:15 AM, Dominic Hargreaves <dom@...> wrote:
> > On Wed, Nov 04, 2009 at 09:05:20AM -0800, john wrote:
> >> I see that there is another null pointer dereference flaw being talked about.
> >> http://www.theregister.co.uk/2009/11/03/linux_kernel_vulnerability/
> >>
> >> It looks like we can take step in Debian 5.0 to mitigate this threat by setting
> >> echvm.mmap_min_addr = 4096
> >>
> >> per http://wiki.debian.org/mmap_min_addr
> >>
> >> I am running some servers running Debian 4.0. I doesn't look like
> >> there is a /etc/sysctl.d/mmap_min_addr.conf to edit. Where are these
> >> values stored
> >> under Debian 4.0.
> >>
> >> What is the right way to proceed? Should I be looking at upgrading my servers?
> >
> > The mmap_min_addr tuneabout was not introduced until after 2.6.18,
> > which is the default etch kernel. I am using the 'etchnhalf' kernel
> > (linux-image-2.6.24-etchnhalf*) on an etch machine, partly since it
> > offers this protection.
> >
> Thanks Dominic,
>
> So would
>
> sudo apt-get install linux-image-2.6.24-etchnhalf.1-686
>
> be the right approach here?

A combination of that and the mmap_min_addr.conf file would do the trick.

--
dann frazier

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Re: Debian 4.0 and mmap_min_addr null pointer dereference flaw

2009-11-04T09:31:36Z

Quoting john (lists.john@...):

> I see that there is another null pointer dereference flaw being talked about.
> http://www.theregister.co.uk/2009/11/03/linux_kernel_vulnerability/
>
> It looks like we can take step in Debian 5.0 to mitigate this threat by setting
> echvm.mmap_min_addr = 4096
>
> per http://wiki.debian.org/mmap_min_addr
>
> I am running some servers running Debian 4.0. I doesn't look like
> there is a /etc/sysctl.d/mmap_min_addr.conf to edit. Where are these
> values stored
> under Debian 4.0.

John, I believe you can/should just put

vm.mmap_min_addr = 4096

at the bottom of /etc/sysctl.conf, and then re-run (as root) "sysctl -p"
to load values from that file. You can verify that the appropriate
/proc value has been set by doing

cat /proc/sys/vm/mmap_min_addr

Should now be "4096", rather than the distro default of "0".

As you know, BitBake, dosemu (run by non-root users), WINE (if running
Win16 apps), and qemu are the applications thus far identified that need
to be able to mmap to low memory addresses, necessitating low
vm.mmap_min_addr AKA /proc/sys/vm/mmap_min_addr values.

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Re: Debian 4.0 and mmap_min_addr null pointer dereference flaw

2009-11-04T09:24:55Z

On Wed, Nov 4, 2009 at 9:15 AM, Dominic Hargreaves <dom@...> wrote:

> On Wed, Nov 04, 2009 at 09:05:20AM -0800, john wrote:
>> I see that there is another null pointer dereference flaw being talked about.
>> http://www.theregister.co.uk/2009/11/03/linux_kernel_vulnerability/
>>
>> It looks like we can take step in Debian 5.0 to mitigate this threat by setting
>> echvm.mmap_min_addr = 4096
>>
>> per http://wiki.debian.org/mmap_min_addr
>>
>> I am running some servers running Debian 4.0. I doesn't look like
>> there is a /etc/sysctl.d/mmap_min_addr.conf to edit. Where are these
>> values stored
>> under Debian 4.0.
>>
>> What is the right way to proceed? Should I be looking at upgrading my servers?
>
> The mmap_min_addr tuneabout was not introduced until after 2.6.18,
> which is the default etch kernel. I am using the 'etchnhalf' kernel
> (linux-image-2.6.24-etchnhalf*) on an etch machine, partly since it
> offers this protection.
>

Thanks Dominic,

So would

sudo apt-get install linux-image-2.6.24-etchnhalf.1-686

be the right approach here?

John
> --
> Dominic Hargreaves | http://www.larted.org.uk/~dom/
> PGP key 5178E2A5 from the.earth.li (keyserver,web,email)
>

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Re: Debian 4.0 and mmap_min_addr null pointer dereference flaw

2009-11-04T09:23:23Z

On Wed, Nov 04, 2009 at 09:05:20AM -0800, john wrote:

> Hello all,
>
> I see that there is another null pointer dereference flaw being talked about.
> http://www.theregister.co.uk/2009/11/03/linux_kernel_vulnerability/
>
> It looks like we can take step in Debian 5.0 to mitigate this threat by setting
> echvm.mmap_min_addr = 4096
>
> per http://wiki.debian.org/mmap_min_addr
>
> I am running some servers running Debian 4.0. I doesn't look like
> there is a /etc/sysctl.d/mmap_min_addr.conf to edit. Where are these
> values stored
> under Debian 4.0.

There isn't a pre-existing mmap_min_addr.conf, you need to create it.
You can view the current value in /proc:

# cat /proc/sys/vm/mmap_min_addr

> What is the right way to proceed? Should I be looking at upgrading my servers?
>
> Thanks!
>
> John
>
>

--
dann frazier

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Re: Debian 4.0 and mmap_min_addr null pointer dereference flaw

2009-11-04T09:15:35Z

On Wed, Nov 04, 2009 at 09:05:20AM -0800, john wrote:

The mmap_min_addr tuneabout was not introduced until after 2.6.18,
which is the default etch kernel. I am using the 'etchnhalf' kernel
(linux-image-2.6.24-etchnhalf*) on an etch machine, partly since it
offers this protection.

--
Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from the.earth.li (keyserver,web,email)

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Debian 4.0 and mmap_min_addr null pointer dereference flaw

2009-11-04T09:05:20Z

Hello all,

I see that there is another null pointer dereference flaw being talked about.
http://www.theregister.co.uk/2009/11/03/linux_kernel_vulnerability/

It looks like we can take step in Debian 5.0 to mitigate this threat by setting
echvm.mmap_min_addr = 4096

per http://wiki.debian.org/mmap_min_addr

I am running some servers running Debian 4.0. I doesn't look like
there is a /etc/sysctl.d/mmap_min_addr.conf to edit. Where are these
values stored
under Debian 4.0.

What is the right way to proceed? Should I be looking at upgrading my servers?

Thanks!

John

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

to: Henri Salvo

2009-11-04T08:34:11Z

Hi,

I tried to send a copy of the file to you but got the following error:

henri@...
SMTP error from remote mail server after RCPT TO:<henri@...>:
host kiwai.nerv.fi [213.157.65.70]: 554 5.7.1 Service unavailable; Client host [64.222.186.12] blocked using dnsbl.dronebl.org

-  
When a machine begins to run without human aid, it is time to scrap it -
whether it be a factory or a government.  ~Alexander Chase

Re: dt_ssh5

2009-11-04T07:24:43Z

On Wed, 04 Nov 2009 09:30:35 -0500
Bernie Dolan <bd3@...> wrote:

> Hi,
> I recently became aware of the executable:
> dt_ssh5
> in my /tmp subdirectory.
>
> Seems this is a botnet that is trying brute force attacks from my
> server. Has anybody else seen this?
>
> Thanks for the prompt response.
>
>
> -
> When a machine begins to run without human aid, it is time to scrap
> it - whether it be a factory or a government. ~Alexander Chase

Yes, for example grumpy bsd guy as you can see from:
<http://bsdly.blogspot.com/2009/10/third-time-uncharmed.html>. Could
you email me the file, thanks?

---
Henri Salo

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

dt_ssh5

2009-11-04T06:30:35Z

Hi,
I recently became aware of the executable:
dt_ssh5
in my /tmp subdirectory.

Seems this is a botnet that is trying brute force attacks from my server. Has anybody else seen this?

Thanks for the prompt response.

-  
When a machine begins to run without human aid, it is time to scrap it -
whether it be a factory or a government.  ~Alexander Chase

Please test pidgin update

2009-11-02T11:08:15Z

I've prepared updated packages for pidgin fixing CVE-2009-3615.
However, I need testers who actually use ICQ. Packages are available
at http://people.debian.org/~jmm/ for amd64 and i386. Please send
feedback directly to jmm@...

Cheers,
Moritz

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Venha participar de Pequenos Empreendedores & Grandes Negócios!

2009-10-31T15:50:06Z

Network Email

Entre em Pequenos Empreendedores & Grandes Negócios

Aqui o pequeno empreendedor tem vez! Acesse www.aprumar.webs.com e conheça!

paulo zambroza tem:

12 amigos
14 fotos
1 evento
11 videos
3 tópicos
1 postagem no blog

Entre e conheça essa oportunidade!

Clique para Entrar

Membros em Pequenos Empreendedores & Grandes Negócios:

MARA MACIEL

Antonio Carlos Arruda Oliveira

Zeka Albuquerque

CESAR COSTA

Eliana

Sobre Pequenos Empreendedores & Grandes Negócios

Não lemos pequenas empresas & grandes negocios mas fazemos bons negocios! Acesse www.aprumar.webs.com e saiba mais!

16 membros
15 fotos

11 videos

Para controlar os emails que você receberá em Pequenos Empreendedores & Grandes Negócios, clique aqui

RE: [SECURITY] [DSA 1923-1] New libhtml-parser-perl packages fix denial of service

2009-10-29T23:37:11Z

-----Original Message-----
From: Nico Golde <nion@...>
Sent: vrijdag 30 oktober 2009 2:17
To: debian-security-announce@... <debian-security-announce@...>
Subject: [SECURITY] [DSA 1923-1] New libhtml-parser-perl packages fix denial of service

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA-1923-1 security@...
http://www.debian.org/security/ Nico Golde
October 27th, 2009 http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package : libhtml-parser-perl
Vulnerability : denial of service
Problem type : remote
Debian-specific: no
Debian bug : #552531
CVE ID : CVE-2009-3627

A denial of service vulnerability has been found in libhtml-parser-perl,
a collection of modules to parse HTML in text documents which is used by
several other projects like e.g. SpamAssassin.

Mark Martinec discovered that the decode_entities() function will get stuck
in an infinite loop when parsing certain HTML entities with invalid UTF-8
characters. An attacker can use this to perform denial of service attacks
by submitting crafted HTML to an application using this functionality.

For the oldstable distribution (etch), this problem has been fixed in
version 3.55-1+etch1.

For the stable distribution (lenny), this problem has been fixed in
version 3.56-1+lenny1.

For the testing (squeeze) and unstable (sid) distribution, this problem
will be fixed soon.

We recommend that you upgrade your libhtml-parser-perl packages.

Upgrade instructions
- --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian GNU/Linux 4.0 alias etch
- -------------------------------

Debian (oldstable)
- ------------------

Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.

Source archives:

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.55.orig.tar.gz
Size/MD5 checksum: 84746 75eb683f1fb7aa7c0ffa46ded4564b54
http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.55-1+etch1.diff.gz
Size/MD5 checksum: 6136 8c713a84e3df953ae77d83d9f2cff5bc
http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.55-1+etch1.dsc
Size/MD5 checksum: 882 0f38d699bda26190ea4764aa74eac2c8

alpha architecture (DEC Alpha)

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.55-1+etch1_alpha.deb
Size/MD5 checksum: 108540 a6d69a440e25b3d3b4e9c5057f6b6908

amd64 architecture (AMD x86_64 (AMD64))

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.55-1+etch1_amd64.deb
Size/MD5 checksum: 108168 ddafcee82387004c4d55a39a8ca54eb6

arm architecture (ARM)

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.55-1+etch1_arm.deb
Size/MD5 checksum: 106962 9842d5bc00c6b308d01fae6d20676e9e

hppa architecture (HP PA RISC)

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.55-1+etch1_hppa.deb
Size/MD5 checksum: 109602 2d4a2d3ff134cfdd70135e71caf9043a

i386 architecture (Intel ia32)

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.55-1+etch1_i386.deb
Size/MD5 checksum: 108032 b542502d5b1d4fff66c2d730e8c02790

ia64 architecture (Intel ia64)

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.55-1+etch1_ia64.deb
Size/MD5 checksum: 117524 ce065d8d05996cdc4c436104b578ed0a

mips architecture (MIPS (Big Endian))

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.55-1+etch1_mips.deb
Size/MD5 checksum: 106518 25feabc68e1aa4aff02b6aff00a2a9df

mipsel architecture (MIPS (Little Endian))

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.55-1+etch1_mipsel.deb
Size/MD5 checksum: 105742 17a4f0fafa183a3794fad636e4e26ce4

powerpc architecture (PowerPC)

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.55-1+etch1_powerpc.deb
Size/MD5 checksum: 106504 beb784e9d723ba717d207c6e9c58414b

s390 architecture (IBM S/390)

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.55-1+etch1_s390.deb
Size/MD5 checksum: 106630 1de105f77b55dd920dbfccb7712e3dc1

sparc architecture (Sun SPARC/UltraSPARC)

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.55-1+etch1_sparc.deb
Size/MD5 checksum: 106222 bd1cd736644c4f2dceb76cc5192f18d0

Debian GNU/Linux 5.0 alias lenny
- --------------------------------

Debian (stable)
- ---------------

Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.

Source archives:

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.56-1+lenny1.diff.gz
Size/MD5 checksum: 6147 18b2407d8b26d6225b82a880b16a0e05
http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.56-1+lenny1.dsc
Size/MD5 checksum: 1316 5a923d6089e2ffddf050ea5b017a7956
http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.56.orig.tar.gz
Size/MD5 checksum: 86040 bddc432e5ed9df4d4153a62234f04fc2

alpha architecture (DEC Alpha)

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.56-1+lenny1_alpha.deb
Size/MD5 checksum: 111160 928145a65d633d76bf3db6a42bcf9173

amd64 architecture (AMD x86_64 (AMD64))

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.56-1+lenny1_amd64.deb
Size/MD5 checksum: 111614 9152d47982c212aa1ee9ec8d6293c97e

arm architecture (ARM)

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.56-1+lenny1_arm.deb
Size/MD5 checksum: 109442 e559abada6a045e2a8d51b1c54a89655

armel architecture (ARM EABI)

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.56-1+lenny1_armel.deb
Size/MD5 checksum: 109388 47e0480a189e752018d27ffb4b19d9e1

hppa architecture (HP PA RISC)

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.56-1+lenny1_hppa.deb
Size/MD5 checksum: 112026 52d258a94e332f7f1c527ae0c47d77d6

i386 architecture (Intel ia32)

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.56-1+lenny1_i386.deb
Size/MD5 checksum: 109680 da9426f29d77127b954a77263a5b7665

ia64 architecture (Intel ia64)

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.56-1+lenny1_ia64.deb
Size/MD5 checksum: 121744 90933c7e204254b4c308424af76917b2

mips architecture (MIPS (Big Endian))

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.56-1+lenny1_mips.deb
Size/MD5 checksum: 109378 f46f9971f7d22fe40a1d15cc224cdc70

mipsel architecture (MIPS (Little Endian))

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.56-1+lenny1_mipsel.deb
Size/MD5 checksum: 109870 af19cea178841be6c1fc658cac4c468d

powerpc architecture (PowerPC)

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.56-1+lenny1_powerpc.deb
Size/MD5 checksum: 112450 1a2d490c6120185ec0cbddc2bb73e792

s390 architecture (IBM S/390)

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.56-1+lenny1_s390.deb
Size/MD5 checksum: 110958 2f21853d729b141554b39132ecf21f5c

sparc architecture (Sun SPARC/UltraSPARC)

http://security.debian.org/pool/updates/main/libh/libhtml-parser-perl/libhtml-parser-perl_3.56-1+lenny1_sparc.deb
Size/MD5 checksum: 108682 a1831a4919f5c7b30eab0def292928b5

These files will probably be moved into the stable distribution on
its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@...
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkrqO5QACgkQHYflSXNkfP8jYACgkATgE0BJ4ndT4SUaOhI8Qg0w
gpkAnAzu0Jnb9nHUe/46Ggi7CdwAoApn
=q4EB
-----END PGP SIGNATURE-----

--
To UNSUBSCRIBE, email to debian-security-announce-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Re: [#17089802] [SECURITY] [DSA 1923-1] New libhtml-parser-perl packages fix denial of service

2009-10-29T18:20:54Z

Hei!

Olen parhaillaan syyslomalla ja luen seuraavan kerran sähköpostejani 9.11.2009. Kiireellisissä asioissa voit olla yhteydessä Juha-Pekka Järvenpäähän, juha-pekka.jarvenpaa@... / 09-6829 3012.

--

Ystävällisin terveisin,
Joel Pihlajamaa

--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...