: with space)

Debian Bug Tracking System Sun, 24 Nov 2024 09:46:20 -0800

Your message dated Sun, 24 Nov 2024 17:34:36 +0000
with message-id <e1tfgvi-00ez99...@fasolo.debian.org>
and subject line Bug#1079171: fixed in apache2 2.4.62-5
has caused the Debian Bug report #1079171,
regarding CVE-2024-38473 Regression [2/2]: error parsing URL //: with space
to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
1079171: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1079171
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Package: apache2
Version: 2.4.61-1~deb12u1
Severity: important
Forwarded: https://bz.apache.org/bugzilla/show_bug.cgi?id=69203
Control: tags -1 + bullseye
Control: tags -1 + bookworm
Control: tags -1 + upstream

Dear Maintainer,

A tracking bug for a regression


> After the update "http://domain.com/ja/アダプタ/index.php"; is encoded to 
> "/path_to_docroot/ja/%E3%82%A2%E3%83%80%E3%83%97%E3%82%BF/index.php" in the 
> filesystem.
>
>Jul 18 09:28:22 server apache2[657291]: [proxy_fcgi:debug] [pid 657291:tid 
>657383] mod_proxy_fcgi.c(123): [client ***] AH01060: set r->filename to 
>proxy:fcgi://user-php82fpm/path_to_docroot/ja/%E3%82%A2%E3%83%80%E3%83%97%E3%82%BF/index.php
>
>We fixed it with a symlink for now, which isn´t a good solution.

Thanks

Bastien

signature.asc
Description: This is a digitally signed message part.

--- End Message ---

--- Begin Message ---

Source: apache2
Source-Version: 2.4.62-5
Done: Bastien Roucariès <ro...@debian.org>

We believe that the bug you reported is fixed in the latest version of
apache2, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 1079...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Bastien Roucariès <ro...@debian.org> (supplier of updated apache2 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 14 Nov 2024 00:14:37 +0000
Source: apache2
Architecture: source
Version: 2.4.62-5
Distribution: experimental
Urgency: medium
Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>
Changed-By: Bastien Roucariès <ro...@debian.org>
Closes: 1079171
Changes:
 apache2 (2.4.62-5) experimental; urgency=medium
 .
   * Fix CVE-2024-38473 regression: error parsing URL //: with space
     (Closes: #1079171)
Checksums-Sha1:
 f2d75f94aee89758e6c140c4505b47851a1aacde 3469 apache2_2.4.62-5.dsc
 70010426ed28b1f29eb484f44a92e5efa5150021 829424 apache2_2.4.62-5.debian.tar.xz
 33c6a19e936e1a02ceef6fec9f5ba12b6aeca961 12176 apache2_2.4.62-5_amd64.buildinfo
Checksums-Sha256:
 60477f2c412cc5550930677bd55e810d7eccca6b00056b62d245a62cd6aa01f3 3469 
apache2_2.4.62-5.dsc
 1865273b898670b9981e958cf027dc9fc13669cf1daddca2607981bf8406e2ac 829424 
apache2_2.4.62-5.debian.tar.xz
 dcd3bf20a8b49933a151ba45a549ca9c2f639809283e171519b0ec6003410aca 12176 
apache2_2.4.62-5_amd64.buildinfo
Files:
 ac34cbaee4f9198623aeca4b726460ce 3469 httpd optional apache2_2.4.62-5.dsc
 aa8757e1b2ea9ad59323390f308d4dc4 829424 httpd optional 
apache2_2.4.62-5.debian.tar.xz
 918d3f9d2573a675e5921d137eb9df40 12176 httpd optional 
apache2_2.4.62-5_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----

iQJFBAEBCgAvFiEEXQGHuUCiRbrXsPVqADoaLapBCF8FAmdDXBMRHHJvdWNhQGRl
Ymlhbi5vcmcACgkQADoaLapBCF88/w/+KfAFfnlY2i0+xSNEVZ/tlOvUJd5V2mB3
1F5w3UvsQx1wDHVLT9ImdxOT+jjF/rYZnJnDVcsnnK6i1kkWKqgUl3qULBeLZ0iD
075RPDVbc+84rjW9vr9Go/mLAGT15/LnlhNmouuP8G7lcCVqdPT4pbWN0HRni0nN
1uQd02tzLKeVFV8wX/0h5nCvjKawWFHN8sSWLHU9blXwQdjdzQ6K5VXyycJ6JfTj
Y174Nz/ugCB5O4NbnDuw3bjkUcbOtByFE3uzLLCP2EYiBmTkrUsb9evHatBPK2g1
TAszjv1JbLMCLSqaxzX/hI3JFqb2XdvZLW71yFYNeOS/Sx3sPzc/JsBJ4JFia6+i
E4Q1sWCGTRq8r6QKmcXQrCP6BU3C9fNKTSHIOXkwloYCMVyNXwLAmO1ouvlnMx7r
pFjXzv4zoDllcCWG+rChfeKuhi10Hca/RBHBd3D1TeVDXhjfYVXvhg7ILq6aMwWT
DsmRQKA9fwvx+abimlIj1p2fMWn1hPGtr19dUMifNlThFjD6Ejp/VqcBLQrI1ItR
N0IbhwwSXJ3hlXFA6U5U07lRgHMdK5ff8sp1O06J8e4i3WRdFpIAIvcVHCTAx+t4
SEla8e566v4pD87f9vtkErqwq1vPMkJ58HDejNojGBP2V4k/T17b65G1+eDknyJk
vshjIsV5Spg=
=gIPT
-----END PGP SIGNATURE-----

pgp61oiVqSv3x.pgp
Description: PGP signature

--- End Message ---

Bug#1079171: marked as done (CVE-2024-38473 Regression [2/2]: error parsing URL //: with space)

Reply via email to