Your message dated Tue, 22 Oct 2024 17:25:52 +0000 with message-id <[email protected]> and subject line Bug#1081990: Removed package(s) from unstable has caused the Debian Bug report #942737, regarding libapache2-mod-gnutls: mod_gnutls consumes 100% cpu (CVE-2023-25824) to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [email protected] immediately.) -- 942737: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=942737 Debian Bug Tracking System Contact [email protected] with problems
--- Begin Message ---Package: libapache2-mod-gnutls Version: 0.9.0-1 Severity: grave Tags: upstream Justification: renders package unusable Dear Maintainer, I have updated apache2 & mod gnutls application. In testing with a basic html page, I notice that apache2 process loops infinitly, "ps" output: www-data 6103 92.8 0.1 29696 9708 ? R 19:37 28:24 /usr/sbin/apache2 -k start I try with ssl module: <IfModule mod_ssl.c> SSLEngine On SSLCertificateFile /etc/apache2/ssl/domain.com.crt SSLCertificateKeyFile /etc/apache2/ssl/domain.com.key </IfModule> <IfModule mod_gnutls.c> GnuTLSEnable on GnuTLSCertificateFile /etc/apache2/ssl/domain.com.crt GnuTLSKeyFile /etc/apache2/ssl/domain.com.key GnuTLSPriorities PFS:-VERS-ALL:+VERS-TLS1.3:+VERS-TLS1.2:%SERVER_PRECEDENCE </IfModule> I have the issue only with gnutls module. To check, I attach a gdb session: (gdb) bt #0 0x00007f78b4cfb92f in ?? () from target:/usr/lib/x86_64-linux-gnu/libgnutls.so.30 #1 0x00007f78b4cfdf7c in ?? () from target:/usr/lib/x86_64-linux-gnu/libgnutls.so.30 #2 0x00007f78b4e90f38 in ?? () from target:/usr/lib/apache2/modules/mod_gnutls.so #3 0x00007f78b4e91ad2 in mgs_filter_input () from target:/usr/lib/apache2/modules/mod_gnutls.so #4 0x000055c220cd08e1 in ap_rgetline_core () #5 0x000055c220cd336c in ap_read_request () #6 0x000055c220cfe7a8 in ?? () #7 0x000055c220cf38b0 in ap_run_process_connection () #8 0x00007f78b3bd23df in ?? () from target:/usr/lib/apache2/modules/mod_mpm_prefork.so #9 0x00007f78b3bd26d4 in ?? () from target:/usr/lib/apache2/modules/mod_mpm_prefork.so #10 0x00007f78b3bd272f in ?? () from target:/usr/lib/apache2/modules/mod_mpm_prefork.so #11 0x00007f78b3bd32f3 in ?? () from target:/usr/lib/apache2/modules/mod_mpm_prefork.so #12 0x000055c220ccc67e in ap_run_mpm () #13 0x000055c220cc4f57 in main () I don't know how to fix the issue and how to help you. -- System Information: Debian Release: 10.1 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 4.19.0-6-amd64 (SMP w/4 CPU cores) Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8), LANGUAGE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages libapache2-mod-gnutls depends on: ii apache2-bin [apache2-api-20120211] 2.4.38-3+deb10u3 ii libc6 2.28-10 ii libgnutls30 3.6.7-4 ii libmsv1 1.1.1-3 libapache2-mod-gnutls recommends no packages. libapache2-mod-gnutls suggests no packages. -- no debconf information Available to do tests and more. Nico
--- End Message ---
--- Begin Message ---Version: 0.9.0-1.1+rm Dear submitter, as the package mod-gnutls has just been removed from the Debian archive unstable we hereby close the associated bug reports. We are sorry that we couldn't deal with your issue properly. For details on the removal, please see https://bugs.debian.org/1081990 The version of this package that was in Debian prior to this removal can still be found using https://snapshot.debian.org/. Please note that the changes have been done on the master archive and will not propagate to any mirrors until the next dinstall run at the earliest. This message was generated automatically; if you believe that there is a problem with it please contact the archive administrators by mailing [email protected]. Debian distribution maintenance software pp. Thorsten Alteholz (the ftpmaster behind the curtain)
--- End Message ---
